mathworks.com XSS vulnerability

2016-03-14T10:58:00
ID OBB:141416
Type openbugbounty
Reporter dim0k
Modified 2016-09-01T05:31:00

Description

Vulnerable URL:
http://www.mathworks.com/company/events/webinars/upcoming.html?s_tid=1="><!--
</pre>

##### Details:

Description| Value  
---|---  
Patched:| Yes, at 18.08.2016  
Latest check for patch:| 18.08.2016 20:09 GMT  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| 2748  
Google Pagerank| 8  
VIP website status:| Yes  
Check mathworks.com SSL connection:| (Grade: A-)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 14 March, 2016 10:58 GMT  
Vulnerability existence verified and confirmed| 14 March, 2016 21:32 GMT  
Notification sent to subscribers (without technical details)| 14 March, 2016 22:17 GMT  
Vulnerability details disclosed by researcher| 6 June, 2016 22:11 GMT  
Vulnerability patched by the website owner| 1 September, 2016 05:31 GMT