Bug bounty write-up: Reflected cross-site scripting in Yahoo’s Contextual Ads search

I decided to start this blog by writing a post containing a technical write-up of my first (and last) attempt to participate in the bug bounty program promoted by Yahoo!.

In this post I will share technical details on the reflected cross-site scripting vulnerability I discovered around 8 months ago as well as vent about my frustration in dealing with their bounty program.

Continue reading “Bug bounty write-up: Reflected cross-site scripting in Yahoo’s Contextual Ads search”

Advertisements
Bug bounty write-up: Reflected cross-site scripting in Yahoo’s Contextual Ads search