radioerft.de XSS vulnerability

2016-08-21T02:07:00
ID OBB:176772
Type openbugbounty
Reporter iandioch
Modified 2016-09-18T15:28:00

Description

Vulnerable URL:
http://www.radioerft.de/erft/re/250693/suche?x=0&y;=0&sq;=%27%20onfocus=alert(%27OPENBUGBOUNTY%27)%20autofocus%20x=%27
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 847326
VIP website status:| No
Check radioerft.de SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 21 August, 2016 02:07 GMT
Generic security notifications sent to website owner| 21 August, 2016 02:10 GMT
Vulnerability details disclosed by researcher| 18 September, 2016 02:12 GMT
Vulnerability patched by the website owner| 18 September, 2016 15:28 GMT