logo
DATABASE RESOURCES PRICING ABOUT US

gambit.blogs.nytimes.com XSS vulnerability

Description

##### Vulnerable URL: http://gambit.blogs.nytimes.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alert`OPENBUGBOUNTY` ##### Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check gambit.blogs.nytimes.com SSL connection:| (Grade: F) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 14 May, 2016 23:10 GMT Vulnerability existence verified and confirmed| 16 May, 2016 10:53 GMT Notification sent to subscribers (without technical details)| 16 May, 2016 14:17 GMT Vulnerability details disclosed by researcher| 8 August, 2016 11:12 GMT Vulnerability patched by the website owner| 2 September, 2016 05:35 GMT