zapmeta.mx XSS vulnerability

2015-08-21T12:29:00
ID OBB:80947
Type openbugbounty
Reporter bugs3ra
Modified 2016-01-30T22:12:00

Description

Vulnerable URL:
http://www.zapmeta.mx/?vid=l20392322I1440159458&sess;=a3a3a303a3a313&template;=&asid;=zapmeta_ch&awc;=&de;=&nwc;=&q;=%22%3E%3Cscript%3Ealert%28%2FXSSPOSED%2F%29%3C%2Fscript%3E
Details:

Description| Value
---|---
Patched:| Yes, at 30.01.2016
Latest check for patch:| 30.01.2016 22:12 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 21599
Google Pagerank| 0
VIP website status:| Yes
Check zapmeta.mx SSL connection:| (Grade: C+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 21 August, 2015 12:29 GMT
Vulnerability existence verified and confirmed| 21 August, 2015 12:32 GMT
Vulnerability patched by the website owner| 30 January, 2016 22:12 GMT