search

despo / issuehub.io

Find open source issues to work on! (domain update)
http://issuehub.pro
MIT License
260 stars 174 forks source link

XSS Found! On "Issuehub.io"!!!!!!!! #339

Closed Hack3rOneness closed 11 months ago

Hack3rOneness commented 3 years ago

Hello Team, I'm Hack3r_Oneness Recently I've found an XSS bug on the "http://issuehub.io/" website. Vulnerable URL: http://issuehub.io/?label[text]="labels"

Step to Reproduce :

  1. Parameter ?label[text]= is vulnerable to xss
  2. Put this simple payload = "/> in ?label[text]= and BOOM!!!!
  3. As you can see in a snapshot the alert has a popup of domain.

Note: This could be more impactful...

Kindly Contact me on this mail: sumit.kumar@spsu.ac.in

issuehub

Hack3rOneness commented 11 months ago

Please contact here sumitoneness256@gmail.com