health2000.co.nz XSS vulnerability

2015-07-08T12:56:00
ID OBB:70636
Type openbugbounty
Reporter dr1337mk
Modified 2017-07-25T12:17:00

Description

Vulnerable URL:
http://www.health2000.co.nz/search?search=%22%3Ederp%3Cimg%20src=x%20onerror=prompt%28String.fromCharCode%2888,83,83,80,79,83,69,68%29%29%3E
Details:

Description| Value
---|---
Patched:| Yes, at 25.07.2017
Latest check for patch:| 25.07.2017 12:17 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 742066
Google Pagerank| 4
VIP website status:| No
Check health2000.co.nz SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 8 July, 2015 12:56 GMT
Vulnerability existence verified and confirmed| 8 July, 2015 12:58 GMT
Vulnerability patched by the website owner| 25 July, 2017 12:17 GMT