nesine.com XSS vulnerability

2016-08-09T06:42:00
ID OBB:172722
Type openbugbounty
Reporter tbm
Modified 2016-09-22T05:07:00

Description

Vulnerable URL:
https://www.nesine.com/iddaa/videolar/default.aspx?EventType=0&VideoType;=1%22%20onclick%3dprompt(/OPENBUGBOUNTY/)%20accesskey%3d%22A#EditorVideolari&1&&0
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 10678
VIP website status:| Yes
Check nesine.com SSL connection:| (Grade: C)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 9 August, 2016 06:42 GMT
Generic security notifications sent to website owner| 9 August, 2016 06:45 GMT
Vulnerability patched by the website owner| 11 September, 2016 14:39 GMT
Vulnerability details disclosed by researcher| 22 September, 2016 05:07 GMT