tw.tek.com XSS vulnerability

2016-09-27T18:07:00
ID OBB:183932
Type openbugbounty
Reporter npuser500
Modified 2016-12-21T12:37:00

Description

Vulnerable URL:
http://tw.tek.com/search/apachesolr_search/OPENBUGBOUNTY">

##### Details:

Description| Value  
---|---  
Patched:| Yes, at  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| 48306  
VIP website status:| Yes  
Check tw.tek.com SSL connection:| (Grade: F)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 27 September, 2016 18:07 GMT  
Generic security notifications sent to website owner| 27 September, 2016 18:09 GMT  
Customized security notification sent to website owner| 27 September, 2016 18:09 GMT  
Notification sent to subscribers (without technical details)| 27 September, 2016 22:17 GMT  
Vulnerability details disclosed by researcher| 20 December, 2016 18:14 GMT  
Vulnerability patched by the website owner| 21 December, 2016 12:37 GMT