XSS in fabric.io

Disclosed: 2014-12-23 15:56:03 By atom To x
Unknown
Vulnerability Details
Proof: http://i.imgur.com/Hk84G3Y.png Vulnerable Page: https://fabric.io/onboard/invite Put this code: "><img src=x onerror=alert(document.domain)> and email then send invitation
Actions
View on HackerOne
Report Stats
  • Report ID: 32519
  • State: Closed
  • Substate: resolved
  • Upvotes: 2
Share this report