Vulnerability :- "XSS vulnerability"

ID H1:89081
Type hackerone
Reporter bhavi
Modified 2015-10-24T15:18:59


Hello Security Team,

I have found XSS vulnerability On your WEBSITE :-

My Payload is this :- >'>"><img src=x onmouseover =prompt(0)>

Vulnerability :- "XSS vulnerability"

Vulnerable Fields : "Social Network fields"

Cross-Site Scripting (XSS) vulnerabilities are a type of computer security vulnerability typically found in Web applications. XSS vulnerabilities enable attackers to inject client-side script into Web pages viewed by other users.

Let's See how to find this vulnerability.

Following This all Reproduce Steps Attached POC Dropbox URL:-

And you can see there the XSS Vulnerability is fully Execute by My payload.


POC :- Attached Video POC Dropbox URL:-

Thank You...!

Regards, Pratik Panchal