Multiple giftcard sites suffer from cross site scripting vulnerabilities. The vendor has failed to make good on their bug bounty program claiming they are duplicate findings but has never addressed the issues.
8a8a5b2527c53ec54d24e012abe5d9f6540c8d3fb6ccb01b41286319fc8fb060