Import emails from Gmail are activate XSS

Disclosed: 2014-04-21 16:22:41 By sasi2103 To respondly
Unknown
Vulnerability Details
Hi, If you choose to import your contacts via Gmail and the contact name contains JS, it will execute it. Sasi
Actions
View on HackerOne
Report Stats
  • Report ID: 7913
  • State: Closed
  • Substate: resolved
  • Upvotes: 1
Share this report