• How i Find Stored Xss in eBay.

    Aslam-O-Alaikum,

    In 7 September 2016 i Submitted a Cross-Site Scripting Issue to eBay.They in September 13,2016 reply me Message that the Bug is Comfirmed and Awaiting Fix.In 19 October 2016 they Reply that the Bug is Fixed Now.

    Steps to Reproduce:-

    1. Create a Account on ebay and PayPal.
    2. Create a New Listing
    3. add Item Details of Following PayLoad in all Post/Options:-
    <script>alert(1);</script>
     4.Link account with paypal
    5.Done! Item Added with Xss in eBay.

    Video to Reproduce:-

  • 0 comments:

    Post a Comment

    Powered by Blogger.