Uber: XSS on partners.uber.com due to no user input sanitisation

The /p3/drivers/vehicles/add endpoint on partners.uber.com was vulnerable to cross site scripting, since the endpoint did not validate the data it received, it did not perform encoding on the data to remove or make harmless HTML-sensitive characters such as . The page response was not served with...

Uber: IDOR on partners.uber.com allows for a driver to override administrator documents

An IDOR in the /p3/drivers/uploadDocument endpoint on partners.uber.com allowed a driver to upload and overwrite documents for other drivers on a multi-driver account. In addition to this, there was an access control issue where a driver account could also upload and overwrite documents for the...

Uber: Self-XSS on partners.uber.com

Hi, I found a reflected XSS vulnerability in password reset page https://partners.uber.com/reset-password. I have tested this vulnerability in the latest Chrome and Firefox browsers. Reproduction Steps: 1- Go to https://login.uber.com/forgot-password and reset password. Then, Click password reset...

Uber: Reflected XSS POST method at partners.uber.com

A lack of proper input validation made it possible for an attacker to execute malicious JavaScript code on partners.uber.com. This reflected XSS would execute after making a POST request with an XSS payload in the path of the request. As a result, the server would directly insert the payload into...

Uber: Stored Cross Site Scripting [SELF] in partners.uber.com

Hey Uber Team, although you are excluding self stored XSS i am reporting this one because it could be exploited by someone with more skills then i have :- : 1. Login to your profile and change the address to : “ 2. Go to https://partners.uber.com/fuelcards/enroll 3. The JS will pop up best Patrik...