Saturday, June 15, 2019

Bitdefender Cross site scripting vulnerability - Refused to Accept

Recently i have reported Persistent and Reflected XSS vulnerability to Bitdefender and they refused to acknowledge it and fix the vulnerability within 15 days. It was such a shameless act by Bitdefender.

After reporting the vulnerability this is what they respond me


However the vulnerability is fixed so i decided to share about Exploitation of the vulnerability.

Also made a video find it end of the blog.

Find POC video below :