teara.govt.nz XSS vulnerability

teara.govt.nz XSS vulnerability. Patched: No, Latest check for patch: 31.07.2017, Vulnerability type: XSS, Vulnerability status: Publicly disclosed, Alexa Rank: 82745, VIP website status: Yes. Coordinated Disclosure Timeline: Vulnerability submitted via Open Bug Bounty, 9 June, 2017 09:40 GMT, Vulnerability existence verified and confirmed, Generic security notifications sent to website owner, Vulnerability details disclosed by researcher, 21 July, 2017 14:15 GM