A Security Researcher Ankit Bharathan (aka lonely-hacker) has discovered a Non-persistent Cross site scripting vulnerability in Adobe website.
The vulnerability resides in one of the adobe sub domain "dbln-speedtest.adobe.com"
The POC for the vulnerability:
Ankit notified Adobe about the vulnerability but they failed to respond for his mail.
The vulnerability resides in one of the adobe sub domain "dbln-speedtest.adobe.com"
The POC for the vulnerability:
http://dbln-speedtest.adobe.com/index.php?lang="><SCRIPT>alert("E Hacking News")</SCRIPT>The Researcher claim to have discovered a path disclosure vulnerability in the same link and have 90+ open directory in Adobe.
Ankit notified Adobe about the vulnerability but they failed to respond for his mail.
Vulnerabilities in Adobe |