adultfriendfinder.com XSS vulnerability

Questions or requests about submissions
Post Reply
Lewis
Posts:20
Joined:Tue Nov 24, 2015 2:13 pm
adultfriendfinder.com XSS vulnerability

Post by Lewis » Thu Dec 03, 2015 11:01 pm

This is stored and doesnt even require the cookie; you'd think they'd have learned a few security lessons after being hacked right?...
:ugeek:

Spam404Online
Posts:296
Joined:Mon Nov 23, 2015 6:43 pm
Contact:

Re: adultfriendfinder.com XSS vulnerability

Post by Spam404Online » Fri Dec 04, 2015 1:52 pm

Nice find! Stored :roll:

Have they contacted you about this? I usually find websites that have recently been exploited are very quick to respond to vulnerabilities researchers find. It's a shame it takes most websites a serious incident like they experienced to take their security seriously.

Lewis
Posts:20
Joined:Tue Nov 24, 2015 2:13 pm

Re: adultfriendfinder.com XSS vulnerability

Post by Lewis » Fri Dec 04, 2015 8:21 pm

Spam404Online wrote:Nice find! Stored :roll:

Have they contacted you about this? I usually find websites that have recently been exploited are very quick to respond to vulnerabilities researchers find. It's a shame it takes most websites a serious incident like they experienced to take their security seriously.
Nope :( Waiting on an email to be honest; no excuse for not responding to it after the breach they suffered; they've learned nothing :lol:
:ugeek:

Lewis
Posts:20
Joined:Tue Nov 24, 2015 2:13 pm

Re: adultfriendfinder.com XSS vulnerability

Post by Lewis » Fri Dec 04, 2015 8:24 pm

edit: 1 minute after posting and i see this :lol: :lol: :lol:

Image
:ugeek:

tbmnull
Posts:183
Joined:Wed Dec 02, 2015 7:38 am

Re: adultfriendfinder.com XSS vulnerability

Post by tbmnull » Sat Dec 05, 2015 10:57 pm

it is not necessary to have bounty program, ask for reward for responsible disclosure!

Post Reply

Who is online

Users browsing this forum: No registered users and 2 guests