"a stored xss issue in share post menu"
Unknown
Vulnerability Details
good day:
when a team mate named an xss payload:
ex: "><img src=x onerror=alert(1)>
"><img src=x onerror=alert(1)>
that xss payload will execute when making a post then share it, to a team that has an xss payload named. that shared as a direct message please see screenshot
when making post here:
https://hunter22.slack.com/files/create/space
Actions
View on HackerOneReport Stats
- Report ID: 148848
- State: Closed
- Substate: resolved
- Upvotes: 7