swpp.co.uk IFRAME Injection vulnerability

2016-11-29T10:34:00
ID OBB:195326
Type openbugbounty
Reporter SnazzySanoj
Modified 2016-12-06T11:15:00

Description

Vulnerable URL:
http://swpp.co.uk/wedding_venues/goto/rd.cgi?redir=http://openbugbounty.org
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 28.07.2017
Vulnerability type:| IFRAME Injection
Vulnerability status:| Publicly disclosed
Alexa Rank| 440579
VIP website status:| No
Check swpp.co.uk SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 29 November, 2016 10:34 GMT
Generic security notifications sent to website owner| 29 November, 2016 10:37 GMT
Vulnerability details disclosed by researcher| 6 December, 2016 11:15 GMT