Reflected XSS via Unvalidated / Open Redirect in uber.com

Disclosed: 2016-05-09 22:29:33 By mdv To uber
Unknown
Vulnerability Details
Hello, To reproduce this issue, visit this URL: https://www.uber.com/en//example.com/ This URL will redirect at [example.com](https://example.com/).
Actions
View on HackerOne
Report Stats
  • Report ID: 125791
  • State: Closed
  • Substate: resolved
  • Upvotes: 9
Share this report