Twitter: XSS via Fabrico Account Name

ID H1:34725
Type hackerone
Reporter adeelimtiaz90
Modified 2016-07-11T18:04:28


O.S: Windows 8 Browser: Google Chrome

Steps to reproduce: 1) Inject This Payload while Signing Up your account at fabrico

"><img src=x onerror=alert(2);>

2) After the Confirmation, Activate your account

That's it Pop Will indicate XSS vulnerability