an xss issue in https://hunter22.slack.com/help/requests/793043

Disclosed: 2016-04-30 22:10:30 By securitythinker To slack

Unknown

Vulnerability Details

good day: i found an xss issue when making a help request.. https://hunter22.slack.com/help/requests/new with this xss payload: [Click here](javascript:alert(document.domain)) [click this link](data:text/html;base64,PHNjcmlwdD5hbGVydCgnWFNTJyk8L3NjcmlwdD4K) when try to comment the xss payload , then upon clicking xss payload executed.

Actions

View on HackerOne

Report Stats

Report ID: 116419
State: Closed
Substate: resolved
Upvotes: 1

an xss issue in https://hunter22.slack.com/help/requests/793043

Vulnerability Details

Actions

Report Stats

Share this report