Finding Stored XSS in the widget builder feature of a website.

Hello Everyone, I hope everyone is doing great. In this write-up I am going to explain how did I found a Stored XSS in the widget builder feature of a website that made me 50$ Bounty. Its a private website so lets say the website is www.redacted.com

First thing first, I was just simply browsing the website, trying all the features the website provides, but I was of no luck, then suddenly I thought to check the widget builder function of the website.

  1. Go to settings
  2. Go to widget sections.
  3. Click on “Create New”
  4. Click on “Launcher Type”
  5. And in Text field Add your payload, and save it and the XSS will be executed.
Adding Stored XSS Payload in the Title Bar.
Stored XSS Executed.

It was a simple vulnerability, though it took almost 2-3 months for the company to reply, yet its fixed now.
Thanks For Reading. Will post more of my write-ups.

Leave a Reply

Your email address will not be published. Required fields are marked *

Achievements🏆

All the mentioned companies below, I have reported security vulnerabilities for which I have either received acknowledgement as Hall of Fame or received monetary reward as Bug Bounties. 

  • Telekom.
  • Sony.
  • Dell.
  • Adobe.
  • Frill.Co
  • Lenskart.
  • NCIIPC RVDP. (Goverment of India)
  • Magicpin.
  • Vercel.
  • YourDost.
  • Porche.
  • Channable.
  • OpenMoney.
  • Uizard.