ebs.edu XSS vulnerability

2015-10-01T07:50:00
ID OBB:89652
Type openbugbounty
Reporter dim0k
Modified 2016-10-12T22:24:00

Description

Vulnerable URL:
https://www.ebs.edu/gsearch.html?q=x'-alert(/XSSPOSED/)-'&search;=Suche
Details:

Description| Value
---|---
Patched:| Yes, at 12.10.2016
Latest check for patch:| 12.10.2016 09:00 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| 256271
Google Pagerank| 7
VIP website status:| Yes
Check ebs.edu SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 1 October, 2015 07:50 GMT
Vulnerability existence verified and confirmed| 1 October, 2015 07:53 GMT
Vulnerability patched by the website owner| 12 October, 2016 22:24 GMT