xe.com XSS vulnerability

2016-01-19T13:58:00
ID OBB:126331
Type openbugbounty
Reporter Lewis
Modified 2017-05-12T15:07:00

Description

Vulnerable URL:
http://www.xe.com/email/cus/cus_newsletter.php?basecur=USD&date;=2009-05-20⊂=CUSD3FA4958E1E7loldongs">
Details:

Description| Value
---|---
Patched:| Yes, at 12.05.2017
Latest check for patch:| 12.05.2017 01:48 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 480
Google Pagerank| 8
VIP website status:| Yes
Check xe.com SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 19 January, 2016 13:58 GMT
Vulnerability existence verified and confirmed| 19 January, 2016 14:00 GMT
Vulnerability details disclosed by researcher| 12 April, 2016 14:11 GMT
Vulnerability patched by the website owner| 12 May, 2017 15:07 GMT