This is a write-up about the XSS Vulnerability which I found on the BBC website. I came across BBC’s Bug Bounty program and decided to give a try. I picked http://www.worldservicepartners.bbc.co.uk/ as my target (domain unavailable, as BBC terminated the domain recently). On visiting the domain, there was a login page but there’s no registration […]
Google Bug Bounty Writeup XSSS Vulnerability explaining how I could able to pop an XSS on Google’s portal.