Content Spoofing
Unknown
Vulnerability Details
Content spoofing, also referred to as content injection or virtual defacement, is an attack targeting a user made possible by an injection vulnerability in a web application.
It display the same as its entered.
The crafted Thing will make the user to access or capy paste the malacious site and later it will return back to zendesk.
Possible Fix:
URL Encode spaces to %20 which will convert spoofing content look like link
Actions
View on HackerOneReport Stats
- Report ID: 90753
- State: Closed
- Substate: resolved
- Upvotes: 2