keas.ch XSS vulnerability

2017-10-02T20:23:00
ID OBB:321817
Type openbugbounty
Reporter mcurietribute
Modified 2017-12-31T21:26:00

Description

Vulnerable URL:
http://keas.ch/images/stylesheets.php?search?q=13'">![](x)5+best+5+worst&updated-max;=2017-08-20T07:30:00-07:00&max-results;=6&start;=6&by-date;=false&token;=CkD_AL_9KRkA_wD_AP8A___-94LbPJLzsyFKyMrMyszGx8vMyM_Py8rNysfHycXGzsrKyM3PzszNzsnKyc3Oyv_-EAYhAPJiCzBxsCBQAFoLCV6dJQBM8v7BEAJgxom07gE=
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 31.12.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 2 October, 2017 20:23 GMT
Generic security notifications sent to website owner| 2 October, 2017 20:25 GMT
Notification sent to subscribers (without technical details)| 2 October, 2017 22:17 GMT
Vulnerability details disclosed by researcher| 31 December, 2017 21:26 GMT