kohls.com XSS vulnerability

2017-10-09T08:05:00
ID OBB:328884
Type openbugbounty
Reporter dim0k
Modified 2017-10-09T14:17:00

Description

On the 09.10.2017 security researcher reported a XSS vulnerability affecting the kohls.com website via the Open Bug Bounty coordinated vulnerability disclosure program.

Coordinated Disclosure Timeline:

Description| Value
---|---
Vulnerability submitted via Open Bug Bounty| 9 October, 2017 08:05 GMT
Vulnerability existence verified and confirmed| 9 October, 2017 13:35 GMT
Generic security notifications sent to website owner| 9 October, 2017 13:35 GMT
Notification sent to subscribers (without technical details)| 9 October, 2017 14:17 GMT

If you are the website owner or administrator please contact the researcher directly to get vulnerability details and proceed to coordinated disclosure.