cPanel cross-site scripting vulnerability (CNVD-2019-28988)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A cross-site scripting vulnerability exists in cPanel versions prior to 60.0.25. The vulnerability stems from a lack of proper...

OkCupid: An XSS bug was fixed due to my report, but I didn't submit it through the h1

I wasn't notified of the security process, and received no bounty. On Jan 08, 2015 at 01:22AM UTC OkCupid User Feedback wrote: don't hover over this if you put this on your profile and they hover over it, they will "like" your profile this can be used to execute arbitrary clientside code...