tusclasesparticulares.com IFRAME Injection vulnerability

2016-06-19T06:19:00
ID OBB:159967
Type openbugbounty
Reporter Gamliel_InfoSec
Modified 2017-07-27T09:59:00

Description

Vulnerable URL:
http://www.tusclasesparticulares.com/buscar/clasesparticulares.aspx?origin=top&q;=%3Ccenter%3E%3Ciframe+src=https://openbugbounty.org+width=1100+height=4000px%3E
Details:

Description| Value
---|---
Patched:| Yes, at 27.07.2017
Latest check for patch:| 27.07.2017 09:59 GMT
Vulnerability type:| IFRAME Injection
Vulnerability status:| Publicly disclosed
Alexa Rank| 59026
VIP website status:| No
Check tusclasesparticulares.com SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 19 June, 2016 06:19 GMT
Generic security notifications sent to website owner| 19 June, 2016 06:21 GMT
Customized security notification sent to website owner| 19 June, 2016 06:21 GMT
Notification sent to subscribers (without technical details)| 19 June, 2016 10:17 GMT
Vulnerability details disclosed by researcher| 17 July, 2016 07:11 GMT
Vulnerability patched by the website owner| 27 July, 2017 09:59 GMT