87505.xssposed.net XSS vulnerability

Questions or requests about submissions
Post Reply
ret2libc
Posts:62
Joined:Tue Nov 24, 2015 11:52 am
87505.xssposed.net XSS vulnerability

Post by ret2libc » Tue Dec 15, 2015 2:27 am

O god i lold
Last edited by ret2libc on Tue Dec 15, 2015 12:14 pm, edited 1 time in total.
Top
ret2libc
Posts:62
Joined:Tue Nov 24, 2015 11:52 am

Re: 87505.xssposed.net XSS vulnerability

Post by ret2libc » Tue Dec 15, 2015 2:28 am

Didn't mean to submit this
Top
ret2libc
Posts:62
Joined:Tue Nov 24, 2015 11:52 am

Re: 87505.xssposed.net XSS vulnerability

Post by ret2libc » Sun Dec 20, 2015 5:31 pm

This is probably worth fixing tho - you can submit a mirror of a valid xss as an XSS and it will be auto-accepted. maybe you should block submissions from *.xssposed.net - i noticed you can submit something in *.xssposed.net under open bug bounty then immediately delete the submission, causing the number of vulnerabilities patched under open bug bounty to rise on the researcher profiles... this could inaccurately reflect how hard a researcher has been working, as they could do this thousands of times to make it look like they've patched thousands of vulnerable sites under open bug bounty. Whether it has an affect on overall rankings and overall number of submissions i'm not certain (didnt test)>
Top
Post Reply

Return to “Submissions Discussion”

Who is online

Users browsing this forum: No registered users and 2 guests