huffingtonpost.com XSS vulnerability

2015-08-22T05:58:00
ID OBB:81009
Type openbugbounty
Reporter llama477
Modified 2016-06-21T07:19:00

Description

Vulnerable URL:
http://www.huffingtonpost.com/ajax/newsletter/rightrail/subscribe.php
Details:

Description| Value
---|---
Patched:| Yes, at 20.06.2016
Latest check for patch:| 20.06.2016 17:06 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 107
Google Pagerank| 8
VIP website status:| Yes
Check huffingtonpost.com SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 22 August, 2015 05:58 GMT
Vulnerability existence verified and confirmed| 22 August, 2015 06:00 GMT
Vulnerability patched by the website owner| 21 June, 2016 07:19 GMT