Mar 31, 2018

XSS in Yahoo Subdomain


 Flash XSS in Subdomain ( )

Hello everyone This is my first Blog 
about find an XSS in Yahoo 

Sure Its hard to Get an XSS in 
So I started in the Subdomians 

I've found this Small Bug :) 
 Yui  Version 3.5.1  on this Subdomian 
and it have XSS Vulnerability in flash files

The Bug was reported about  5 months ago 
The fix they removed this subdomain

Payload :

POC : 

Reward : 600$

Share This
Previous Post
Next Post

Security Researcher at Many Websites - Bug Hunter - Civil Engineer Student