The Web's Most Trusted Digital Marketplace vulnerable to XSS and redirect
Founded in 1998, ClickBank is a secure online retail outlet for more than 70,000 digital product vendors and 110,000 active affiliate marketers.
ClickBank makes a sale somewhere in the world every three seconds, safely processing more than 27,000 digital transactions a day. We serve more than 200 countries, and are consistently ranked as one of the most highly-trafficked sites on the web.
Poc:
https://www.clickbank.com/webchat/email/offline-mail.jsp?workgroup=XSS
https://www.clickbank.com/webchat/email/offline-mail.jsp?workgroup=Redirect
how you see in the screenshot ,the website is secured by McAfee and VerySign
I think they need to buy and read that book :)
No response to “ClickBank XSS”
Leave a reply