visitwoods.org.uk XSS vulnerability

2015-11-06T15:14:00
ID OBB:102116
Type openbugbounty
Reporter Spam404
Modified 2017-07-25T21:39:00

Description

Vulnerable URL:
http://visitwoods.org.uk/en/visit-woods/pages/search-result.aspx?lc=404%22%3E%3Cimg%20src=x%20onerror=window.onerror=alert;throw/xssposed/;//%3E%3C&d;=5&st;=Location&op;=And#.VjzDmd0Zlgh
Details:

Description| Value
---|---
Patched:| Yes, at 25.07.2017
Latest check for patch:| 25.07.2017 21:39 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 2852231
Google Pagerank| 5
VIP website status:| No
Check visitwoods.org.uk SSL connection:| (Grade: B)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 6 November, 2015 15:14 GMT
Vulnerability existence verified and confirmed| 6 November, 2015 15:16 GMT
Vulnerability patched by the website owner| 25 July, 2017 21:39 GMT