Vulnerable URL:
https://buyandsell.gc.ca/procurement-data/search/site/%2527%2522%253E%253CSvG%2520onload%253Dalert%2528%2527XSSPOSED%2527%2529%253E?retain-filters=1&f;%5B0%5D=sm_facet_procurement_data%3Adata_data_tender_notice
Details:
Description |
Value |
Patched: |
Yes, at 13.01.2017 |
Latest check for patch: |
13.01.2017 19:18 GMT |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
245818 |
VIP website status: |
No |
Check buyandsell.gc.ca SSL connection: |
(Grade: A-) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
23 September, 2016 10:15 GMT |
Generic security notifications sent to website owner |
23 September, 2016 10:17 GMT |
Notification sent to subscribers (without technical details) |
23 September, 2016 14:17 GMT |
Vulnerability details disclosed by researcher |
14 October, 2016 11:13 GMT |
Vulnerability patched by the website owner |
14 January, 2017 12:38 GMT |