Mail.ru: [FG-VD-17-115] Mail.ru's Amigo Browser DLL Pre-Loading Vulnerability Notification

Amigo browser installer before version 2.0.0.257 was vulnerable to DLL planting vulnerability. Amigo browser is not currently in the scope of the Mail.Ru Bug Bounty program...

amigo-browser.ru XSS vulnerability

Vulnerable URL: http://amigo-browser.ru/dkit-hps/?chid=12930partnerid=dse.1:812270,dse.2:812274,hp.1:812269,hp.2:812273,pult.1:812271,pult.2:812275,any.2:812272,any:812268=fDrYpMqTUQ=818068=hdclub"alert/OPENBUGBOUNTY/...