OkCupid: Direct XSS vulnerabilities (persistent) in http://www.okcupid.com/profile

2014-03-03T22:06:09
ID H1:2978
Type hackerone
Reporter hykatza
Modified 2014-04-04T17:41:29

Description

Direct XSS vulnerabilities (persistent) in:

http://www.okcupid.com/profile

Prone to stealing cookies and thereby session hijacking