Vulnerable URL:
http://fedex.com/us/demo/claimsonline/detect/flash_detection.swf?flashContentURL=javascript:prompt(1)
Details:
Description |
Value |
Patched: |
No |
Latest check for patch: |
09.01.2018 |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
450 |
VIP website status: |
Yes |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
11 October, 2017 04:57 GMT |
Vulnerability existence verified and confirmed |
11 October, 2017 11:02 GMT |
Generic security notifications sent to website owner |
11 October, 2017 11:02 GMT |
Notification sent to subscribers (without technical details) |
11 October, 2017 14:17 GMT |
Vulnerability details disclosed by researcher |
9 January, 2018 11:10 GMT |