fritidsresor.se XSS vulnerability

2016-08-01T18:03:00
ID OBB:171066
Type openbugbounty
Reporter idominone
Modified 2016-08-23T06:12:00

Description

Vulnerable URL:
http://www.fritidsresor.se/view/TopImageComponentController?code=PC-000040204&componentUid;=&tabName;=LASTMINUTE&type;=ACCOMMODATION
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 30.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 34428
VIP website status:| Yes
Check fritidsresor.se SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 1 August, 2016 18:03 GMT
Vulnerability existence verified and confirmed| 2 August, 2016 05:20 GMT
Vulnerability details disclosed by researcher| 23 August, 2016 06:12 GMT