Reflected XSS in

I have tried a few times, but finally managed to execute JavaScript code in

Steps to reproduce:

1. Sign up –

2. Navigate to “Configure” -> “Alerts” and in the “Software is installed matching the following expression” field with box checked type the following payload:


3. Click “Save Changes”. JavaScript code will execute.


[November 2nd 2013] - bug was reported
[November 26th 2013] - bug was fixed


Leave a Reply

Your email address will not be published. Required fields are marked *