tipico.de XSS vulnerability

2015-09-30T05:26:00
ID OBB:89467
Type openbugbounty
Reporter dim0k
Modified 2017-03-02T08:00:00

Description

Vulnerable URL:
https://www.tipico.de/en/online-casino/games/?searchString=x%2522%253E%253Cscript%253Ealert%2528%2527XSSPOSED%2527%2529%253C%252fscript%253E
Details:

Description| Value
---|---
Patched:| Yes, at 01.03.2017
Latest check for patch:| 01.03.2017 16:41 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 16851
Google Pagerank| 5
VIP website status:| Yes
Check tipico.de SSL connection:| (Grade: A)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 30 September, 2015 05:26 GMT
Vulnerability existence verified and confirmed| 30 September, 2015 05:28 GMT
Vulnerability patched by the website owner| 2 March, 2017 08:00 GMT