tha.nsw.gov.au XSS vulnerability

2015-08-15T04:30:00
ID OBB:78890
Type openbugbounty
Reporter billyzane
Modified 2016-01-30T22:03:00

Description

Vulnerable URL:
http://www.tha.nsw.gov.au/property-search/search_results.cfm?town=&postcode;=">&proptype;=both&tharef;=&submit;=Search
Details:

Description| Value
---|---
Patched:| Yes, at 30.01.2016
Latest check for patch:| 30.01.2016 22:03 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 5
VIP website status:| No
Check tha.nsw.gov.au SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 15 August, 2015 04:30 GMT
Vulnerability existence verified and confirmed| 15 August, 2015 04:33 GMT
Vulnerability patched by the website owner| 30 January, 2016 22:03 GMT