Jump to content
Sign in to follow this  

XSS Reflected - pay.google.com

Recommended Posts

Salutare tuturor,


A trecut ceva timp de când n-am mai postat ce am găsit pe aici. :-)

Am găsit un XSS reflected în https://pay.google.com. Din păcate, merge doar pe Internet Explorer 11 din cauză că browser-ul nu suportă CSP-ul. Partea bună, este că vulnerabilitatea pe care am găsit-o a fost validată. 




Cam atât pot spune în momentul de față. Numai bine.



  • Upvote 8

Share this post

Link to post
Share on other sites





Nice catch! I've filed a bug based on your report. The panel will evaluate it at the next VRP panel meeting and we'll update you once we've got more information. All you need to do now is wait. If you don't hear back from us in 2-3 weeks or have additional information about the vulnerability, let us know!


  • Upvote 2

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this