all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Reflected XSS Leads to 3,000$ Bug Bounty Rewards from Microsoft Forms

Add to bookmarks
Jan. 22, 2023, 6:21 p.m. | Supakiad S. (m3ez)

InfoSec Write-ups - Medium infosecwriteups.com

Microsoft Forms Vulnerability: Reflected Cross-site Scripting (XSS)

In this blog post, I will discuss the details of a reflected cross-site scripting (XSS) vulnerability in Microsoft Forms.

Additionally, in my last blog post, I disclosed a vulnerability report on Microsoft Power Apps and dove into the processes of reporting. You can refer to my previous post on: Microsoft bug reports lead to ranking on Microsoft MSRC Quarterly Leaderboard (Q3 2022) for more detailed information on the process of reporting and claiming …

bounty bug bug bounty bug-bounty-writeup cross site scripting forms microsoft microsoft security msrc reflected xss xss

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

Private Interact.sh server setup with a web dashboard 14 hours ago | infosecwriteups.com
bug bounty cybersecurity hacking tools +1
Understanding 403 Bypass: A Critical Vulnerability in Web Application Security 1 day, 14 hours ago | infosecwriteups.com
403 bypass access application applications +28
Hack Stories: Hacking Hackers EP:3 2 days, 14 hours ago | infosecwriteups.com
big bug bounty cybersecurity hack +9
Mastering Shodan Search Engine 3 days, 15 hours ago | infosecwriteups.com
bug bounty bug-bounty-tips cybersecurity information security +1
Email Verification Bypass via Remember Me 3 days, 15 hours ago | infosecwriteups.com
bug bounty cybersecurity hacking pentesting +1
Exploiting Symlinks: A Deep Dive into CVE-2024–28185 and CVE-2024–28189 of Judge0 Sandboxes 3 days, 15 hours ago | infosecwriteups.com
attacks code code execution continue +15
Typo Trouble: Exploring the Telegram Python RCE Vulnerability 3 days, 15 hours ago | infosecwriteups.com
address alerts application concept +25
Active DNS Recon using AXIOM 3 days, 15 hours ago | infosecwriteups.com
bug bounty bug-bounty-tips cybersecurity infosec +1
Information Disclosure: Story of 500€ + 400$ Bounty 3 days, 15 hours ago | infosecwriteups.com
bug bounty cybersecurity hacking information technology +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Operations Manager (f/d/m), 80-100%

@ Alpiq | Lausanne, CH
View on infosec-jobs.com

Project Manager - Cyber Security

@ Quantrics Enterprises Inc. | Philippines
View on infosec-jobs.com

Sr. Principal Application Security Engineer

@ Gen | DEU - Tettnang, Kaplaneiweg
View on infosec-jobs.com

(Senior) Security Architect Car IT/ Threat Modelling / Information Security (m/f/x)

@ Mercedes-Benz Tech Innovation | Ulm
View on infosec-jobs.com

Information System Security Officer

@ ManTech | 200AE - 375 E St SW, Washington, DC
View on infosec-jobs.com
View more jobs