equifax.co.uk XSS vulnerability

2016-03-14T13:52:00
ID OBB:141437
Type openbugbounty
Reporter dim0k
Modified 2016-08-16T09:56:00

Description

Vulnerable URL:
http://www.equifax.co.uk/business/resources?p_p_id=resourcestabs_WAR_resourcestabsportlet&p;_p_lifecycle=0&p;_p_state=normal&p;_p_mode=view&p;_p_col_id=column-4&p;_p_col_count=1&_resourcestabs_WAR_resourcestabsportlet_jspPage=/view.jsp&firstFilterCategoryId;=1786570&secondFilterCategoryId;=null&search;=null">
Details:

Description| Value
---|---
Patched:| Yes, at 15.08.2016
Latest check for patch:| 15.08.2016 19:36 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 55472
Google Pagerank| 6
VIP website status:| No
Check equifax.co.uk SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 14 March, 2016 13:52 GMT
Generic security notifications sent to website owner| 14 March, 2016 13:55 GMT
Vulnerability details disclosed by researcher| 6 June, 2016 14:15 GMT
Vulnerability patched by the website owner| 16 August, 2016 09:56 GMT