travel4u.com.ua XSS vulnerability

2015-12-26T23:05:00
ID OBB:120417
Type openbugbounty
Reporter e3xpl0it
Modified 2016-03-19T23:11:00

Description

Vulnerable URL:
http://travel4u.com.ua/asearch/0:+%27+%22++%22%3e%3csvg+onload%3d%28alert%29%28%2fXSSposed%2f%29+%3e.html
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 4102993
Google Pagerank| 1
VIP website status:| No
Check travel4u.com.ua SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 26 December, 2015 23:05 GMT
Vulnerability existence verified and confirmed| 26 December, 2015 23:08 GMT
Vulnerability details disclosed by researcher| 19 March, 2016 23:11 GMT