Hello,
i found that there is reflected XSS vulnerability in /forgot_password end.
If I send request with in it, withou client side validation, script is returned in response and is perfomed on client side.
I did not find any solution how to fix it, can you help me with that ? :)
Hello, i found that there is reflected XSS vulnerability in /forgot_password end. If I send request with in it, withou client side validation, script is returned in response and is perfomed on client side. I did not find any solution how to fix it, can you help me with that ? :)
Thank you, Mike