lib.sut.ac.ir XSS vulnerability

2016-08-03T09:45:00
ID OBB:171576
Type openbugbounty
Reporter 524Dart
Modified 2017-07-27T23:07:00

Description

Vulnerable URL:
http://lib.sut.ac.ir/main;jsessionid=CD2BB938835FD51799493917D702869A?p_p_auth=e3HPzZ5w&p;_p_id=3&p;_p_lifecycle=0&p;_p_state=maximized&p;_p_mode=view&p;_p_col_id=column-1&p;_p_col_count=2&_3_struts_action=/ext/searchCollection
Details:

Description| Value
---|---
Patched:| Yes, at 27.07.2017
Latest check for patch:| 27.07.2017 23:07 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No
Check lib.sut.ac.ir SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 3 August, 2016 09:45 GMT
Generic security notifications sent to website owner| 3 August, 2016 09:47 GMT
Vulnerability details disclosed by researcher| 26 October, 2016 12:14 GMT
Vulnerability patched by the website owner| 27 July, 2017 23:07 GMT