Google Play - Cross Site Scripting (XSS) Vulnerability

Vulnerability Type: Cross Site Scripting (XSS)

  • Reported on 16 July 3013
  • Fixed on 17 July 2013

Details/Writeup-

Google recently changed it's design of Google Play which lead to this XSS vulnerability.

Head to Google Play settings (https://play.google.com/settings)

Change Nickname of your mobile to below XSS vector-

"><img src=x onerror=prompt(1);>

and click on Update.











Now, go to any application page.

The XSS vector will execute-



Google rewarded me with 5000$ for reporting this vulnerability.

12 comments

BEST & MOST WANTED
http://www.boombu.com - fitness you x
http://www.sextamina.com - sex xx
http://www.aceofbeauty.com - fat loss sexy
http://www.bestbuyx.com - sex xx
http://www.theorchidx.com - orchids orchidaceae phalaenopsis care
http://www.babxyz.com - dog food xx
http://www.babysolve.com - baby potty xx
http://www.suwandri.com - options trading xx
http://www.googleclickbank.com - forex fx xx
http://www.jelema.com - fat loss xx
http://www.bestbuygameguide.com -- betting money xx
mesothelioma master xx

Reply

Hello sir, This is a nice blog regarding taxi app development.This is very informative .I am daily reader of your blogs. Please add more. visit: https://www.mtoag.com/

Reply

Nice post. Thanks for sharing! I want people to know just how good this information is in your article. It’s interesting content and Great work.
Digital Marketing Course In Kolkata
Web Design Course In Kolkata

Reply

Such a wonderful article and I feel that it is best to write more on this topic. Thank you so much because i learn a lot of ideas about it. Keep posting...
Digital Marketing Course In Kolkata
Web Design Course In Kolkata
SEO Course In Kolkata

Reply

Very nice post..After reading your post,thanks for taking the time to discuss this, I feel happy about and I love learning more about this topic.
Selenium Training in chennai | Selenium Training in anna nagar | Selenium Training in omr | Selenium Training in porur | Selenium Training in tambaram | Selenium Training in velachery

Reply

MP Board 12th Class Blueprint 2021 English Medium & Hindi Medium PDF download, MPBSE 12th Blueprint 2021 Pdf Download, mpbse.nic.in 12th Blue

Print, Marking Scheme and Arts, Commerce and Science Streams Chapter wise Weightage pdf download. MP Board 12th Blue Print || MPBSE 12th Model Papers || MPBSE 10th Model Papers

Manabadi AP Intermediate 2nd Year Model Question Paper 2021 MPC, BIPC, CEC, MEC group TM, EM Subject wise Blue Print, Download BIEAP

Intermediate Second Year Model Question Papers, AP Senior Inter Test Papers, Chapter wise important Questions download. || AP Inter MPC, Bi.PC, CEC Blue Print || AP Inter 1st / 2nd Year Model Papers || AP 2nd year inter Test Papers

Kar 1st / 2nd PUC Blue Print || UP Board 12th Blueprint 2021

Reply

Machine Learning Projects for Final Year machine learning projects for final year

Deep Learning Projects assist final year students with improving your applied Deep Learning skills rapidly while allowing you to investigate an intriguing point. Furthermore, you can include Deep Learning projects for final year into your portfolio, making it simpler to get a vocation, discover cool profession openings, and Deep Learning Projects for Final Year even arrange a more significant compensation.

Python Training in Chennai Python Training in Chennai Angular Training Project Centers in Chennai

Reply

Post a Comment