On the 18.11.2017 security researcher reported a XSS vulnerability affecting the buildabear.de website via the Open Bug Bounty coordinated vulnerability disclosure program.
Vulnerability submitted via Open Bug Bounty| 18 November, 2017 15:39 GMT
Vulnerability existence verified and confirmed| 20 November, 2017 05:57 GMT
Generic security notifications sent to website owner| 20 November, 2017 05:57 GMT
Customized security notification sent to website owner| 20 November, 2017 05:57 GMT
If you are the website owner or administrator please contact the researcher directly to get vulnerability details and proceed to coordinated disclosure.