daft.ie XSS vulnerability

2015-12-18T19:16:00
ID OBB:117506
Type openbugbounty
Reporter dim0k
Modified 2016-04-01T00:06:00

Description

Vulnerable URL:
http://www.daft.ie/searchteamup.daft?s%5Bc_id%5D=1&s;%5Ba_id%5D=*&s;%5Bnum_teamup%5D=any>&s;%5Brent%5D=1651619287&s;%5Bmovein_date%5D=0&submit;_search=Find%20Roommates%20%C2%BB
Details:

Description| Value
---|---
Patched:| Yes, at 31.03.2016
Latest check for patch:| 31.03.2016 12:05 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 10693
Google Pagerank| 7
VIP website status:| Yes
Check daft.ie SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 18 December, 2015 19:16 GMT
Vulnerability existence verified and confirmed| 18 December, 2015 19:19 GMT
Vulnerability details disclosed by researcher| 11 March, 2016 20:11 GMT
Vulnerability patched by the website owner| 1 April, 2016 00:06 GMT