Openfolio: xss in /browse/contacts/
hey guys i just found an xss in openfolio i just created an contact in google with name as " and gave an email as random url https://www.google.com/contacts/u/0/contact/new then i synced openfolio with google contacts then i went here https://openfolio.com/browse/contacts/ then i clicked on invit...