spareroom.co.uk XSS vulnerability

2016-06-04T13:20:00
ID OBB:157687
Type openbugbounty
Reporter 1995eaton
Modified 2017-02-18T00:46:00

Description

Vulnerable URL:
http://www.spareroom.co.uk/?loginfrom_url=">
Details:

Description| Value
---|---
Patched:| Yes, at 17.02.2017
Latest check for patch:| 17.02.2017 10:30 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 10267
VIP website status:| Yes
Check spareroom.co.uk SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 4 June, 2016 13:20 GMT
Generic security notifications sent to website owner| 4 June, 2016 13:22 GMT
Vulnerability details disclosed by researcher| 25 June, 2016 14:11 GMT
Vulnerability patched by the website owner| 18 February, 2017 00:46 GMT