Clickjacking with reflected xss and redirected to google

Disclosed by
Orange_hacker's avatar
Orange_hacker
  • Engagement Hummingbird VDP
  • Disclosed date about 2 years ago
  • Priority P5 Bugcrowd's VRT priority rating
  • Status Informational This vulnerability is seen as an accepted business risk
Summary by Orange_hacker

This is a simple p5 bug

Activity
  1. MikeO’s avatar
    MikeO Customer published the disclosure report

    ()

  2. Orange_hacker’s avatar
    Orange_hacker requested disclosure

    ()

  3. Mason357_Bugcrowd’s avatarbugcrowd logo
    Mason357_Bugcrowd sent a message

    ()

  4. Mason357_Bugcrowd’s avatarbugcrowd logo
    Mason357_Bugcrowd changed the state to Informational

    ()

  5. Mason357_Bugcrowd’s avatarbugcrowd logo
    Mason357_Bugcrowd updated VRT to Cross-Site Scripting (XSS) > Reflected > Self

    ()

  6. Orange_hacker’s avatar
    Orange_hacker created the submission

    ()