XSS during presentation
Unknown
Vulnerability Details
It is possible for a presenter to xss a viewer
Video attached:
## Recreation steps
Create publish lesson and start a presentation (join presentation in another browser)
Select "Quick question"
Open response
Insert the question
asdf"><img src=x onerror=prompt(1)>
The Javascript will fire on the presenter's side and the viewers side.
Actions
View on HackerOneReport Stats
- Report ID: 112372
- State: Closed
- Substate: resolved
- Upvotes: 6