Web: https://infosecwriteups.com/reflected-xss-leads-to-3-000-bug-bounty-rewards-from-microsoft-forms-efe34fc6b261?source=rss----7b722bfd1b8d---4

Jan. 22, 2023, 6:21 p.m. | Supakiad S. (m3ez)

InfoSec Write-ups - Medium infosecwriteups.com

Microsoft Forms Vulnerability: Reflected Cross-site Scripting (XSS)

In this blog post, I will discuss the details of a reflected cross-site scripting (XSS) vulnerability in Microsoft Forms.

Additionally, in my last blog post, I disclosed a vulnerability report on Microsoft Power Apps and dove into the processes of reporting. You can refer to my previous post on: Microsoft bug reports lead to ranking on Microsoft MSRC Quarterly Leaderboard (Q3 2022) for more detailed information on the process of reporting and claiming …

bounty bug bug bounty bug-bounty-writeup cross site scripting forms microsoft microsoft security msrc reflected xss xss

Chief Information Security Officer

@ Los Angeles Unified School District | Los Angeles

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States

IT Security Engineer

@ Stylitics | New York City

Information Security Engineer

@ VDA Labs | Remote

Enterprise Security Engineer

@ Greenlight | Bengaluru, Karnataka

Security Solution Administrator - Antivirus Operation (REF565Y)

@ Deutsche Telekom IT Solutions | Budapest, Pécs, Debrecen, Szeged, Hungary

IT Infrastructure Engineer - Cloud Security Administration and Consulting

@ Bosch Group | Warszawa, Poland

Embedded Software Development und Cyber Security Experte (m/w/div)

@ Bosch Group | Leinfelden-Echterdingen, Germany

Senior Cybersecurity Architect

@ McDonald's Corporation | Chicago, IL, United States

Security Engineering Student Worker

@ Mozilla | Remote

Cybersecurity Masters Intern

@ Visa | Ashburn, VA, United States