XSS on manually entering Postal codes

Disclosed: 2016-12-17 12:30:41 By prem1807 To shopify

Medium

Vulnerability Details

Hello, I had found a XSS vulnerability in manually entering postal codes in "Advance Cash On Delivery" option which is newly launched for indians.Below is the screenshot attached. Thank You.

Actions

View on HackerOne

Report Stats

Report ID: 190951
State: Closed
Substate: resolved
Upvotes: 21

XSS on manually entering Postal codes

Vulnerability Details

Actions

Report Stats

Share this report