Zomato: Reflected XSS on business-blog.zomato.com - Part I

ID H1:137905
Type hackerone
Reporter dsopas
Modified 2017-06-18T08:43:33


Hi guys,

I would like to report a reflected XSS on business-blog.zomato.com.

  1. Open Chrome and Firefox (latest versions)
  2. Open https://business-blog.zomato.com/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alert1
  3. Payload is executed

Check the attached screenshot.

Solution: - Update Wordpress to 4.5.2 - Update flashmediaelement.swf to 2.21.1

Feel free to contact me if you need further assistance.

Best, -David Sopas