HackerOne: IE only: stored Cross-Site Scripting (XSS) vulnerability through Program Asset identifier

Hai, I've found a stored xss vulnerability via assets but unfortunately its been blocked by CSP. Steps to reproduce:- 1 Add a asset like " i Go to program -- scope -- Add asset -- select 'Others' and give " ii Check your console now. 2 Then, Go to the created program. You can check with this...