krickshop.de XSS vulnerability

2015-12-14T17:47:00
ID OBB:116272
Type openbugbounty
Reporter krankoPwnz
Modified 2015-12-14T17:49:00

Description

Vulnerable URL:
http://www.krickshop.de/e-vendo.php?SessionId=&a;=search&SearchStr;=asd%22-alert%28%22XSSPOSED%22%29-%22
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 435908
Google Pagerank| 0
VIP website status:| No
Check krickshop.de SSL connection:| (Grade: B+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 14 December, 2015 17:47 GMT
Vulnerability existence verified and confirmed| 14 December, 2015 17:49 GMT