actupon.tv XSS vulnerability

2017-01-30T14:12:00
ID OBB:210148
Type openbugbounty
Reporter Random_Robbie
Modified 2017-02-28T10:17:00

Description

Vulnerable URL:
http://actupon.tv/proofpositive/demo/proxy.php?_base_=http%3A%2F%2Fdcist.com%2F2013%2F06%2Ftrump.php&_url_=http%3A%2F%2Fdcist.com%2F2013%2F04%2Fthe_greatest_most_successful_iconic.php"%27--!>"
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 2307042
VIP website status:| No
Check actupon.tv SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 30 January, 2017 14:12 GMT
Vulnerability existence verified and confirmed| 31 January, 2017 10:15 GMT
Vulnerability details disclosed by researcher| 28 February, 2017 10:17 GMT