Reflected XSS in https://www.indeed.com/career-advice/

Disclosed by
cr00k's avatar
cr00k
  • Engagement Indeed
  • Disclosed date almost 3 years ago
  • Priority P4 Bugcrowd's VRT priority rating
  • Status Resolved This vulnerability has been accepted and fixed
Summary by cr00k

hello,

I'd like to disclose the issue it in CloudStream in full or limited.

Thank you,
NS.

Activity
  1. Kyle_indeed’s avatar
    Kyle_indeed Customer published the disclosure report

    ()

  2. cr00k’s avatar
    cr00k sent a message

    ()

  3. flerken’s avatar
    flerken Customer changed the state to Resolved

    ()

  4. cr00k’s avatar
    cr00k requested disclosure

    ()

  5. harris_bugcrowd’s avatarbugcrowd logo
    harris_bugcrowd sent a message

    ()

  6. harris_bugcrowd’s avatarbugcrowd logo
    harris_bugcrowd marked the submission a duplicate of a previously submitted report

    ()

  7. harris_bugcrowd’s avatarbugcrowd logo
    harris_bugcrowd changed the state to Triaged

    ()

  8. harris_bugcrowd’s avatarbugcrowd logo
    harris_bugcrowd updated VRT to Cross-Site Scripting (XSS) > IE-Only > IE11

    ()

  9. cr00k’s avatar
    cr00k created the submission

    ()