Zomato: xss found in zomato

ID H1:240989
Type hackerone
Reporter rasi-ras
Modified 2017-06-30T04:51:26


while i was testing with your site i found a xss at add the restraunt option

steps to reproduce

1) login to zomato 2) goto add restraunt 3) in the name feild add any xss payload 4)complete it the restraunt will be sent for verification to the verification team and the xss payload will also be sent to there and get executed there screen shot added