Lucene search
Spam404OBB:141202HistoryMar 12, 2016 - 9:09 p.m.
gotimeforce.com XSS vulnerability
2016-03-1221:09:00
Spam404
www.openbugbounty.org
16
Vulnerable URL:
https://www.gotimeforce.com/qqest/login/login.asp?message=%3C/title%3E%3C/script/%22-alert%280%29-%22--%3E%3Cimg/onerror=%27;%20alert%28/XSSPOSED/%29;%27src=1%3E
Details:
| Description | Value |
|---|---|
| Patched: | No |
| Latest check for patch: | 26.07.2017 |
| Vulnerability type: | XSS |
| Vulnerability status: | Publicly disclosed |
| Alexa Rank | Unknown / Not calculated |
| Google Pagerank | 0 |
| VIP website status: | No |
| Check gotimeforce.com SSL connection: | (Grade: F) |
Coordinated Disclosure Timeline:
| Description | Value |
|---|---|
| Vulnerability submitted via Open Bug Bounty | 12 March, 2016 21:09 GMT |
| Generic security notifications sent to website owner | 12 March, 2016 21:12 GMT |
| Notification sent to subscribers (without technical details) | 12 March, 2016 22:17 GMT |
| Vulnerability details disclosed by researcher | 4 June, 2016 22:11 GMT |