vodafone.co.nz Open Redirect vulnerability

2016-02-14T17:40:00
ID OBB:134539
Type openbugbounty
Reporter Spam404
Modified 2017-07-20T16:44:00

Description

Vulnerable URL:
https://www.vodafone.co.nz/knox/login_handler.jsp?pcode=mvf&url;=https://www.xssposed.org/
Details:

Description| Value
---|---
Patched:| Yes, at 20.07.2017
Latest check for patch:| 20.07.2017 01:27 GMT
Vulnerability type:| Open Redirect
Vulnerability status:| Publicly disclosed
Alexa Rank| 37923
Google Pagerank| 6
VIP website status:| Yes
Check vodafone.co.nz SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 14 February, 2016 17:40 GMT
Vulnerability details disclosed by researcher| 8 May, 2016 18:11 GMT
Vulnerability patched by the website owner| 20 July, 2017 16:44 GMT