Google Play - Cross Site Scripting (XSS) Vulnerability

Vulnerability Type: Cross Site Scripting (XSS)

  • Reported on 16 July 3013
  • Fixed on 17 July 2013

Details/Writeup-

Google recently changed it's design of Google Play which lead to this XSS vulnerability.

Head to Google Play settings (https://play.google.com/settings)

Change Nickname of your mobile to below XSS vector-

"><img src=x onerror=prompt(1);>

and click on Update.











Now, go to any application page.

The XSS vector will execute-



Google rewarded me with 5000$ for reporting this vulnerability.

2 comments

MP Board 12th Class Blueprint 2021 English Medium & Hindi Medium PDF download, MPBSE 12th Blueprint 2021 Pdf Download, mpbse.nic.in 12th Blue

Print, Marking Scheme and Arts, Commerce and Science Streams Chapter wise Weightage pdf download. MP Board 12th Blue Print || MPBSE 12th Model Papers || MPBSE 10th Model Papers

Manabadi AP Intermediate 2nd Year Model Question Paper 2021 MPC, BIPC, CEC, MEC group TM, EM Subject wise Blue Print, Download BIEAP

Intermediate Second Year Model Question Papers, AP Senior Inter Test Papers, Chapter wise important Questions download. || AP Inter MPC, Bi.PC, CEC Blue Print || AP Inter 1st / 2nd Year Model Papers || AP 2nd year inter Test Papers

Kar 1st / 2nd PUC Blue Print || UP Board 12th Blueprint 2021

Reply

Post a Comment