mv.com.br XSS vulnerability

mv.com.br XSS vulnerability, Open Bug Bounty ID: OBB-659155. Vulnerable URL: http://www.mv.com.br/en/resultado-busca?search=xssa/%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C!--. Coordinated Disclosure Timeline: Vulnerability Reported: 5 August, 2018 20:25 GMT, Vulnerability Verified: 5 August, 2018 20:31 GMT, Website Operator Notified: 5 August, 2018 20:31 GMT, Public Report Published: 5 August, 2018 20:31 GMT, Public Disclosure: 3 November, 2018 20:25 GM