emits.sso.esa.int XSS vulnerability

2017-04-25T21:54:00
ID OBB:227896
Type openbugbounty
Reporter Alyssa_Herrera
Modified 2017-07-19T14:37:00

Description

Vulnerable URL:
http://emits.sso.esa.int/emits/owa/emits_iitt_external.showsum_iitt?actref=06.BAES.011&user;=Anonymous">![](x)
Details:

Description| Value
---|---
Patched:| Yes, at 27.04.2017
Latest check for patch:| 27.04.2017 19:41 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No
Check emits.sso.esa.int SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 25 April, 2017 21:54 GMT
Generic security notifications sent to website owner| 25 April, 2017 21:57 GMT
Notification sent to subscribers (without technical details)| 25 April, 2017 22:17 GMT
Vulnerability details disclosed by researcher| 18 July, 2017 22:16 GMT
Vulnerability patched by the website owner| 19 July, 2017 14:37 GMT