r2.toto-romance.com XSS vulnerability

2016-11-19T07:30:00
ID OBB:193729
Type openbugbounty
Reporter npuser500
Modified 2017-02-11T08:14:00

Description

Vulnerable URL:
http://r2.toto-romance.com/search/search_list.asp?keyword=OPENBUGBOUNTY">

##### Details:

Description| Value  
---|---  
Patched:| No  
Latest check for patch:| 28.07.2017  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| Unknown / Not calculated  
VIP website status:| No  
Check r2.toto-romance.com SSL connection:| (Grade: F)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 19 November, 2016 07:30 GMT  
Generic security notifications sent to website owner| 19 November, 2016 07:32 GMT  
Notification sent to subscribers (without technical details)| 19 November, 2016 10:17 GMT  
Vulnerability details disclosed by researcher| 11 February, 2017 08:14 GMT