alhea.com XSS vulnerability

2016-08-07T20:12:00
ID OBB:172493
Type openbugbounty
Reporter dim0k
Modified 2016-09-06T04:38:00

Description

Vulnerable URL:
http://www.alhea.com/article/police-search-princes-local-pharmacy.ztUjjEHAe5IA73v.html?clickon=title&pp;=2&q;=search">&pid;=609070608429044943
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 5381
VIP website status:| Yes
Check alhea.com SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 7 August, 2016 20:12 GMT
Generic security notifications sent to website owner| 7 August, 2016 20:15 GMT
Vulnerability patched by the website owner| 2 September, 2016 16:31 GMT
Vulnerability details disclosed by researcher| 6 September, 2016 04:38 GMT