offex.bg XSS vulnerability

2017-08-21T17:49:00
ID OBB:280967
Type openbugbounty
Reporter Mr_R3boot
Modified 2017-11-19T18:30:00

Description

Vulnerable URL:
http://www.offex.bg/bg/search.html?search=testingxss"/>

##### Details:

Description| Value  
---|---  
Patched:| No  
Latest check for patch:| 19.11.2017  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| 831633  
VIP website status:| No  
Check offex.bg SSL connection:| (Grade: F)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 21 August, 2017 17:49 GMT  
Generic security notifications sent to website owner| 21 August, 2017 17:51 GMT  
Vulnerability details disclosed by researcher| 19 November, 2017 18:30 GMT