dr.d3v1l Posted September 8, 2015 Report Share Posted September 8, 2015 Quote Link to comment Share on other sites More sharing options...
Speed123 Posted September 8, 2015 Report Share Posted September 8, 2015 DOM ? Quote Link to comment Share on other sites More sharing options...
UnixDevel Posted September 8, 2015 Report Share Posted September 8, 2015 bravo ! Quote Link to comment Share on other sites More sharing options...
dr.d3v1l Posted September 10, 2015 Author Report Share Posted September 10, 2015 Hello,Thank you for reporting this issue to the Microsoft Security Response Center (MSRC). Self-XSS is not considered a security vulnerability as it requires social engineering.Please see the following for more information: "Definition of a Security Vulnerability" <https://msdn.microsoft.com/en-us/library/cc751383.aspx> "Online Services Bug Bounty Terms" <https://technet.microsoft.com/en-us/security/dn800983>Thanks, @n3curatu Quote Link to comment Share on other sites More sharing options...
1337 Posted September 10, 2015 Report Share Posted September 10, 2015 Sunt foarte muisti cei de la Microsoft la fazele de genul, cred ca am peste trei self-uri raportate si la toate am primit raspunsul standard, in primul rand vulnerabilitatea nu trebuia sa fie acolo, nu inteleg de ce catalogheaza self-urile ca low risk si priority. Quote Link to comment Share on other sites More sharing options...