Content Spoofing

Vulnerability: Content Spoofing or Text Injection Description: This vulnerability will reflect text on to the web page which is used to scam a victim to visit or send information to a malicious website. Because it is inside the domain and trusted web page, there is chances of scam. Open the Url and you will see it. URL: ==https://ads-api.reddit.com///ohhhhhhhhhhh%20we%20are%20facing%20a%20heavy%20traffic,%20please%20visit%20our%20following%20website%20https://www.attacker.com%20to%20learn%20more== attachments ::: {F1266927} Reference: https://owasp.org/www-community/attacks/Content_Spoofing Screenshot is attached as a POC. similar reports :: 1- https://hackerone.com/reports/841630 2- https://hackerone.com/reports/498562 3- https://hackerone.com/reports/327671 ## Impact It is used to scam victim and result will be dangerous.