OLX: Cross-site Scripting (XSS) - Reflected

Dear Security OLX team, I want to report the findings of the security gap on the olx.co.id website, the detailed findings are as follows: impact:https://www.olx.co.id/adminpanel/login/ Payload : ope8i"alert1grpo8 POC: paramter = userpassword POST /adminpanel/login/?ref0action=index&ref0method=ind...

olx.ba XSS vulnerability

Open Bug Bounty ID: OBB-644718 Description| Value ---|--- Affected Website:| olx.ba Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

olx.com.gt Open Redirect vulnerability

Open Bug Bounty ID: OBB-452148 Description| Value ---|--- Affected Website:| olx.com.gt Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

olx.ua XSS vulnerability

Vulnerable URL: http://olx.ua/list/?q=" Details: Description| Value ---|--- Patched:| Yes, at 15.08.2016 Latest check for patch:| 15.08.2016 14:54 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 743 Google Pagerank| 0 VIP website status:| Yes Check olx.ua SSL...