clickjacking on https://gratipay.com/on/npm/[text]
G
Gratipay
Submitted None
Actions:
Reported by
nihaddl
Vulnerability Details
Technical details and impact analysis
hi team ..
i found clickjacking URL on https://gratipay.com/on/npm/[here] this clickjacking must be 3 characturs and must be 5 number this entered endpoint of URL .. please fixed soon
https://gratipay.com/on/npm/[text]
** step respond
1- go to https://gratipay.com/on/npm/[text]
2 - check name or number endpoint URL e.g https://gratipay.com/on/npm/wow
3- look this text on the picture
poc
screen onder .. :)
thanks
nihad
Report Details
Additional information and metadata
State
Closed
Substate
Informative
Submitted
Weakness
UI Redressing (Clickjacking)