XSS in mail.yandex.ru
I have started my bug bounty adventure with Yandex – a company which owns the largest search engine in Russia.
I have started my bug bounty adventure with Yandex – a company which owns the largest search engine in Russia.
The first place where I started looking for a JavaScript code injection on ebay.com was a search box. Surprisingly, it was a bull’s eye.
Simple reflected XSS bug in Avans’ search box: