all InfoSec news
My Journey Finding HTML Injection Vulnerability in a popular British Accountancy platform
System Weakness - Medium systemweakness.com
As a security enthusiast, I’ve always been fascinated by finding vulnerabilities in websites and web applications. I discovered a stored HTML injection vulnerability in popular British Accountancy platform, a popular web application that allows users to manage their finances.
This vulnerability allowed me to execute HTML code on the website, which could potentially harm users’ accounts and expose sensitive information. So, I decided to dig deeper and see if I could exploit this vulnerability.
Here’s what I did:
Step 1: …
british bug bounty bug-bounty-writeup bug-fixes html html injection injection platform popular vulnerability web