Algolia: Text injection on status.algolia.com

2017-06-11T06:55:15
ID H1:238915
Type hackerone
Reporter sh3r1
Modified 2017-08-25T10:17:57

Description

Hi Algolia team!

I just found a text injection vulnerabilty in status.algolia.com/clusters . Please follow the steps below.

Vulnerable URL status.algolia.com

Steps to reproduce: * Go to Vulnerable URL * Add anything you want after the Vulnerable Url.

POC LIVE POC

F193293

Hope you fix it!

Thanks! Sh3r1