translate.ru XSS vulnerability

2017-12-04T01:17:00
ID OBB:447738
Type openbugbounty
Reporter OmniGooch
Modified 2018-01-03T19:32:00

Description

Vulnerable URL:
http://www.translate.ru/redirect////doit.aspx?wl=ru&from;=/&to;=/x"-prompt(/XSSPOSED/)-"
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 6181
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 4 December, 2017 01:17 GMT
Generic security notifications sent to website owner| 4 December, 2017 01:19 GMT
Vulnerability details disclosed by researcher| 3 January, 2018 02:17 GMT
Vulnerability patched by the website owner| 3 January, 2018 19:32 GMT