lexus.re XSS vulnerability

2016-12-17T05:35:00
ID OBB:198300
Type openbugbounty
Reporter Xany
Modified 2017-01-11T17:22:00

Description

Vulnerable URL:
http://www.lexus.re/fr/chercher?query=">
Details:

Description| Value
---|---
Patched:| Yes, at 17.12.2016
Latest check for patch:| 17.12.2016 08:40 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 26120353
VIP website status:| No
Check lexus.re SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 17 December, 2016 05:35 GMT
Generic security notifications sent to website owner| 17 December, 2016 05:37 GMT
Vulnerability details disclosed by researcher| 24 December, 2016 06:13 GMT
Vulnerability patched by the website owner| 11 January, 2017 17:22 GMT