7 matches found
Rapid7 Recognized as a Top Place to Work for 11th Consecutive Year
On November 30th, 2022, Rapid7 was again recognized by The Boston Globe as a Top Place to Work in Massachusetts. This marks the 11th consecutive year Rapid7 has made the list, this time coming in at 3 in the large company category. Top Places to Work rankings are based on a Globe survey that...
HackerOne: Cross-site Scripting (XSS) on HackerOne careers page
Dear HackerOne team, Summary: I found DOM XSS at endpoint https://www.hackerone.com/careers, but can not bypass CSP. It's work on IE and Edge. Steps To Reproduce - JS file is "Masonry js file", vulnerability code: javascript //Checking for potential Lever source or origin parameters var pageUrl =...
reflections.ubisoft.com XSS vulnerability
Open Bug Bounty ID: OBB-643711 Description| Value ---|--- Affected Website:| reflections.ubisoft.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
kik.com XSS vulnerability
Vulnerable URL: https://www.kik.com/careers/?Department=='"--!...
merkleinc.com XSS vulnerability
Vulnerable URL: https://www.merkleinc.com/careers?'alert/OPENBUGBOUNTY/...
tripadvisor.jp XSS vulnerability
Open Bug Bounty ID: OBB-179085 Description| Value ---|--- Affected Website:| tripadvisor.jp Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...
tripadvisor.in XSS vulnerability
Open Bug Bounty ID: OBB-179083 Description| Value ---|--- Affected Website:| tripadvisor.in Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...