XSS using javascript:alert(8007)
Low
X
X (Formerly Twitter)
Submitted None
Actions:
Reported by
bains
Vulnerability Details
Technical details and impact analysis
I want to report a xss bug.
On apps.twitter.com I logged in and start with new app.
In new app there is a feild:
website: where user has to gave website of app.
I just put blocked:alert(8007) pay load and popup appears.
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Cross-site Scripting (XSS) - Generic