Pin It

StumbleUpon Fixes The XSS Vulnerability



                                               
About a week before i reported an XSS vulnerability inside stumbleupon, I promised to disclose the vulnerability details once it gets fixed, Recently i received an email from stumbleUpon. They told that they have fixed the XSS vulnerability and they would like me to test it again if it's still vulnerable to the Cross site Scritping (XSS) attack. I tested the parameter and did not find any potential XSS inside it. Here is the email i received from stumbleUpon:





Vulnerability parameter:

http://stumbleupon.com/hostedbadge.php?s=1&r=XSS

 The above parameter was vulnerable to a reflected cross site scripting attack, however now it's fixed and i don't see the issue any more. 

Subscribe to our Newsletter and receive updates directly via email - Get Ethical hacking and security tips directly to your inbox. Alternatively you can Join our Hackers Community on Facebook, Google+ and Twitter.
Subscribe to RHA


Enjoyed this article?
Subscribe to "Rafay Hacking Articles" and get daily updates in your inbox for free!


Tags:


Kindly Bookmark it and Share it with Friends:

0 comments:

Dare to ask? :)

Subscribe to: Post Comments (Atom)

Blog Archive

 

Popular Posts

Recent Comments

Stats

rafayhackingarticles.net DMCA.com Rafay Baloch - Find me on Bloggers.com

Receive all updates via Facebook. Just Click the Like Button Below

You can also receive Free Email Updates:

Followers

RHA © 2013. All Rights Reserved.

Design By My Blogger Tricks | Home | RSS

Click Here To Subscribe Now To Our RSS FEED.