cla.canon.com XSS vulnerability

2017-10-02T21:16:00
ID OBB:321898
Type openbugbounty
Reporter M0r3h4x
Modified 2018-01-01T15:49:00

Description

Vulnerable URL:
http://www.cla.canon.com/cla/en/consumer/news?gotoPage=1&month;=&year;=&category;=xss"&searchPhrase;=xss"><!--&x=19&y=6
</pre>

##### Details:

Description| Value  
---|---  
Patched:| Yes, at  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| Unknown / Not calculated  
VIP website status:| No

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 2 October, 2017 21:16 GMT  
Generic security notifications sent to website owner| 2 October, 2017 21:17 GMT  
Notification sent to subscribers (without technical details)| 2 October, 2017 22:17 GMT  
Vulnerability details disclosed by researcher| 31 December, 2017 21:26 GMT  
Vulnerability patched by the website owner| 1 January, 2018 15:49 GMT