specials.mediamarkt.es XSS vulnerability

2016-09-24T14:23:00
ID OBB:183369
Type openbugbounty
Reporter 0_1_0_1_0_0_0_0
Modified 2017-11-24T18:52:00

Description

Vulnerable URL:
https://specials.mediamarkt.es/newsletter/registro?email=>

##### Details:

Description| Value  
---|---  
Patched:| Yes, at 24.11.2017  
Latest check for patch:| 24.11.2017 18:52 GMT  
Vulnerability type:| XSS  
Vulnerability status:| Publicly disclosed  
Alexa Rank| Unknown / Not calculated  
VIP website status:| No  
Check specials.mediamarkt.es SSL connection:| (Grade: A)

##### Coordinated Disclosure Timeline:

Description| Value  
---|---  
Vulnerability submitted via Open Bug Bounty| 24 September, 2016 14:23 GMT  
Generic security notifications sent to website owner| 24 September, 2016 14:26 GMT  
Customized security notification sent to website owner| 24 September, 2016 14:26 GMT  
Notification sent to subscribers (without technical details)| 24 September, 2016 18:17 GMT  
Vulnerability details disclosed by researcher| 26 September, 2016 16:01 GMT  
Vulnerability patched by the website owner| 24 November, 2017 18:52 GMT