benq.hr IFRAME Injection vulnerability

2016-06-18T20:53:00
ID OBB:159882
Type openbugbounty
Reporter Max
Modified 2016-07-26T14:33:00

Description

Vulnerable URL:
http://www.benq.hr/search/module?benq_csrf_token_name=e18d6e438d546f042f99223ab9293da9&q;=%22%3E%3Ciframe+src%3D%22https%3A%2F%2Fwww.openbugbounty.org%22%3E
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| IFRAME Injection
Vulnerability status:| Publicly disclosed
Alexa Rank| 12514666
VIP website status:| No
Check benq.hr SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 18 June, 2016 20:53 GMT
Generic security notifications sent to website owner| 18 June, 2016 20:56 GMT
Vulnerability details disclosed by researcher| 23 July, 2016 21:12 GMT
Vulnerability patched by the website owner| 26 July, 2016 14:33 GMT