Page 1 of 1
adultfriendfinder.com XSS vulnerability
Posted: Thu Dec 03, 2015 11:01 pm
by Lewis
This is stored and doesnt even require the cookie; you'd think they'd have learned a few security lessons after being hacked right?...
Re: adultfriendfinder.com XSS vulnerability
Posted: Fri Dec 04, 2015 1:52 pm
by Spam404Online
Nice find! Stored
Have they contacted you about this? I usually find websites that have recently been exploited are very quick to respond to vulnerabilities researchers find. It's a shame it takes most websites a serious incident like they experienced to take their security seriously.
Re: adultfriendfinder.com XSS vulnerability
Posted: Fri Dec 04, 2015 8:21 pm
by Lewis
Spam404Online wrote:Nice find! Stored
Have they contacted you about this? I usually find websites that have recently been exploited are very quick to respond to vulnerabilities researchers find. It's a shame it takes most websites a serious incident like they experienced to take their security seriously.
Nope
Waiting on an email to be honest; no excuse for not responding to it after the breach they suffered; they've learned nothing
Re: adultfriendfinder.com XSS vulnerability
Posted: Fri Dec 04, 2015 8:24 pm
by Lewis
Re: adultfriendfinder.com XSS vulnerability
Posted: Sat Dec 05, 2015 10:57 pm
by tbmnull
it is not necessary to have bounty program, ask for reward for responsible disclosure!
