Non Critical Code Quality Bug / Self XSS on Map Editor
Medium
Vulnerability Details
Hi Team,
I've found non-critical XSS on map editor. It is not for bounty just for code quality.
This is my url:
https://infogram.com/app/#edit/c024c717-31c2-4c31-8491-1cc9534e9adb
When i added map on form then edit Country name and replace with "<script>alert(1);</script>" it is executed.
Attached screenshots.
Actions
View on HackerOneReport Stats
- Report ID: 280865
- State: Closed
- Substate: resolved
- Upvotes: 4