mad.lesoir.be XSS vulnerability

2016-08-23T21:07:00
ID OBB:177291
Type openbugbounty
Reporter iandioch
Modified 2017-01-12T07:38:00

Description

Vulnerable URL:
http://mad.lesoir.be/index.cfm?generalfuse=main&fuse;=globalsearch&gbl;_srh_key=qqqqqqq">%20%27&gbl;_srh_type=&sKeyword;=qqqqqqq<>"%20%27
Details:

Description| Value
---|---
Patched:| Yes, at 11.01.2017
Latest check for patch:| 11.01.2017 15:15 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No
Check mad.lesoir.be SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 23 August, 2016 21:07 GMT
Generic security notifications sent to website owner| 23 August, 2016 21:09 GMT
Vulnerability details disclosed by researcher| 20 September, 2016 21:12 GMT
Vulnerability patched by the website owner| 12 January, 2017 07:38 GMT