Khan Academy: http://smarthistory.khanacademy.org/search-results.html XSS

2014-04-07T21:22:51
ID H1:6344
Type hackerone
Reporter smiegles
Modified 2014-04-09T17:00:02

Description

Hi,

When you go to http://smarthistory.khanacademy.org/search-results.html (use firefox) and search for " onclick="alert(1) and after that click on the search bar a XSS will popup!

Best regards,

Olivier Beg