curbed.com XSS vulnerability

2016-05-30T08:00:00
ID OBB:157117
Type openbugbounty
Reporter 1995eaton
Modified 2016-07-03T17:24:00

Description

Vulnerable URL:
http://www.curbed.com/search?q=">

##### Details:

Description| Value  
---|---  
Patched:| Yes, at  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| 5464  
VIP website status:| Yes  
Check curbed.com SSL connection:| (Grade: A+)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 30 May, 2016 08:00 GMT  
Generic security notifications sent to website owner| 30 May, 2016 08:03 GMT  
Notification sent to subscribers (without technical details)| 30 May, 2016 10:17 GMT  
Vulnerability details disclosed by researcher| 20 June, 2016 08:11 GMT  
Vulnerability patched by the website owner| 3 July, 2016 17:24 GMT