ID H1:34725
Type hackerone
Reporter adeelimtiaz90
Modified 2016-07-11T18:04:28
Description
O.S: Windows 8
Browser: Google Chrome
Steps to reproduce:
1) Inject This Payload while Signing Up your account at fabrico
"><img src=x onerror=alert(2);>
2) After the Confirmation, Activate your account
That's it Pop Will indicate XSS vulnerability
{"id": "H1:34725", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Twitter: XSS via Fabrico Account Name", "description": "O.S: Windows 8\r\nBrowser: Google Chrome\r\n\r\nSteps to reproduce:\r\n1) Inject This Payload while Signing Up your account at fabrico\r\n#\"><img src=x onerror=alert(2);>\r\n2) After the Confirmation, Activate your account \r\n\r\nThat's it Pop Will indicate XSS vulnerability\r\n", "published": "2014-11-06T19:23:33", "modified": "2016-07-11T18:04:28", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://hackerone.com/reports/34725", "reporter": "adeelimtiaz90", "references": [], "cvelist": [], "lastseen": "2018-04-19T17:34:12", "viewCount": 1, "enchantments": {"score": {"value": 3.5, "vector": "NONE", "modified": "2018-04-19T17:34:12", "rev": 2}, "dependencies": {"references": [], "modified": "2018-04-19T17:34:12", "rev": 2}, "vulnersScore": 3.5}, "bounty": 280.0, "bountyState": "resolved", "h1team": {"profile_picture_urls": {"medium": "https://profile-photos.hackerone-user-content.com/000/000/061/e78ef26a3191adcabe7311daa107bd9e152d3b5c_medium.?1439954730", "small": "https://profile-photos.hackerone-user-content.com/000/000/061/4acfe72859c5e9cb48a152edb4e498e13fa28df2_small.?1439954730"}, "handle": "twitter", "url": "https://hackerone.com/twitter"}, "h1reporter": {"hacker_mediation": false, "disabled": false, "username": "adeelimtiaz90", "is_me?": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/013/857/f9d7c490d41b10a886302872cc23a3b69b3a7f55_small.JPG?1523496618"}, "hackerone_triager": false, "url": "/adeelimtiaz90"}}
{}
