sims3.checkout.ea.com Open Redirect vulnerability

2016-05-29T23:05:00
ID OBB:157023
Type openbugbounty
Reporter Spam404
Modified 2016-08-22T13:33:00

Description

Vulnerable URL:
https://sims3.checkout.ea.com/lockbox-ui/manageaccounts/showAccounts?lang=en_US&gameId;=swtor2&encryptedToken;=-PSwO3q0Q_9H8aI6AtNCTtQw1ALXaG8v7qJfMnX3HJfIA-qfUfk2u2VBqbS9sHf25aIbwnlrA-3rf3haoKRCgw..&returnUrl;=https://www.openbugbounty.org/
Details:

Description| Value
---|---
Patched:| Yes, at
Vulnerability type:| Open Redirect
Vulnerability status:| Publicly disclosed
Alexa Rank| Unknown / Not calculated
VIP website status:| No
Check sims3.checkout.ea.com SSL connection:| (Grade: B)

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 29 May, 2016 23:05 GMT
Notification sent to subscribers (without technical details)| 30 May, 2016 02:17 GMT
Vulnerability details disclosed by researcher| 21 August, 2016 23:12 GMT
Vulnerability patched by the website owner| 22 August, 2016 13:33 GMT