Vulnerable URL:
https://www.idescat.cat/cercador/?q=%22%3E%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%3C%2F
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
31.07.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
173401 |
VIP website status: |
No |
Check idescat.cat SSL connection: |
(Grade: A+) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
31 May, 2017 12:20 GMT |
Vulnerability existence verified and confirmed |
5 June, 2017 06:45 GMT |
Generic security notifications sent to website owner |
5 June, 2017 06:45 GMT |
Notification sent to subscribers (without technical details) |
5 June, 2017 10:17 GMT |
Vulnerability details disclosed by researcher |
12 June, 2017 07:14 GMT |