jfrog.com XSS vulnerability

2015-09-16T19:44:00
ID OBB:86623
Type openbugbounty
Reporter WhitePacket
Modified 2015-09-16T19:47:00

Description

Vulnerable URL:
https://www.jfrog.com/search-results/?search_query=![](whitepacket:alert\(/XSSPOSED/\))
Details:

Description| Value
---|---
Patched:| Yes, at 03.10.2015
Latest check for patch:| 03.10.2015 16:45 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 151303
Google Pagerank| 6
VIP website status:| No
Check jfrog.com SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 16 September, 2015 19:44 GMT
Vulnerability existence verified and confirmed| 16 September, 2015 19:47 GMT