Vulnerable URL:
https://www.ncesc1.com/main/login.asp?error=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
26.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
148028 |
Google Pagerank |
5 |
VIP website status: |
No |
Check ncesc1.com SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
1 March, 2016 01:58 GMT |
Generic security notifications sent to website owner |
1 March, 2016 02:01 GMT |
Notification sent to subscribers (without technical details) |
1 March, 2016 06:17 GMT |
Vulnerability details disclosed by researcher |
24 May, 2016 02:11 GMT |