Stored XSS in icloud.com — $5000

XSS fired in Settings >> Browser All Versions.
  1. Go to Page/Keynotes https://www.icloud.com/pages/ or https://www.icloud.com/keynotes
  2. Create Pages or Keynote with the name XSS payload “><img src=x onerror=alert(0)>
  3. Send this to the user or collaborate with any user.
  4. Then go to the pages, make some changes and save
  5. again, go to the pages and go to Settings >> Browser All Versions.
  6. After click on Browse All Versions. XSS will trigger
  1. I reported to Apple on 7th August 2020
  2. They reviewed the report, steps to reproduce, and POC(Video).
  3. Rewarded $5000 Bounty on 9th Oct 2020

--

--

--

Penetration Tester, Bug Bounty Hunter, Security Researcher

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Release of Safematrix: v0.7.8.28 & What’s new this week🚀

{UPDATE} Bendy Escape Hack Free Resources Generator

HackTheBox Writeup — Forest

Should You Use Two-Factor Authentication

New York Cybersecurity Requirements for Financial Services Companies (NYCRFSC)

Article of the Day: Getting into the mind of a Hacker

How to Recover Deleted Records in Access Tables

How to Recover Deleted Records in Access Tables

Progress Report: Security Audit — Round One

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Vishal Bharad

Vishal Bharad

Penetration Tester, Bug Bounty Hunter, Security Researcher

More from Medium

My first Google HOF

google HoF

Bug Bounties in Sri Lanka

XSS | HTML Injection and File Upload Bypass in HUAWEI Subdomain

Yamagata XSS journey

Stage 1