ncsu.edu XSS vulnerability

2017-05-05T12:47:00
ID OBB:232191
Type openbugbounty
Reporter Random_Robbie
Modified 2017-06-27T11:55:00

Description

Vulnerable URL:
https://www.ncsu.edu/brand/utility-bar/iframe/responsive/index.php?color=red_on_white&inurl;=www.engr.ncsu.edu"'--!>&center;=yes&core;=true
Details:

Description| Value
---|---
Patched:| Yes, at 26.06.2017
Latest check for patch:| 26.06.2017 19:38 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 3211
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 5 May, 2017 12:47 GMT
Generic security notifications sent to website owner| 5 May, 2017 12:50 GMT
Vulnerability details disclosed by researcher| 16 June, 2017 13:14 GMT
Vulnerability patched by the website owner| 27 June, 2017 11:55 GMT