XSS Vulnerability in Cisco sub domain found by 14 Years Old security researcher

A very interesting article from our content partners at hackersnewsbulletin.com:

A Cross Site Scripting Vulnerability found in Cisco sub domain newsroom.cisco.com by a 14 Year Youngest security researcher Ali Hasan Gauri, today he reported us about his Latest vulnerability he found in Cisco sub domain.
After reporting this Vulnerability to CISCO they fixed that.
Ali Hasan also added:
Cisco fixed this XSS Vulnerability very soon But Don’t offer any reward for Researchers .

Here is POChttp://newsroom.cisco.com/press-release-content?articleld=1118649%22%3E%3Cimg%20src=x%20onerror=prompt%28XSS/By/AliHasanGhauri%29%3E

Read the rest here.

3 replies
  1. The truth
    The truth says:

    He is not a security researcher. He is XSS hunter. Check his blog: he cannot code. He cannot hack. All he can do is paste into GET parameters.

  2. Houdane Mathew
    Houdane Mathew says:

    He found other Vulnerabilities like LFI on nokia , Open Redirection in Adobe , and many more but he saying that his most favorite Vulnerability is XSS , simple and easy but enjoyfull .

  3. Ilyas Ahmed
    Ilyas Ahmed says:

    I don’t think so , he’s found Amazon XSS , Adobe XSS , Microsoft XSS , Cisco XSS , Ebay XSS , and don’t know even more . All Big Sites are Vulnerable for XSS with simple Payload ? i don’t think it is !
    >I appreciate this guy !
    >My best wishes with yours !
    >Keep It up !


Leave a Reply

Want to join the discussion?
Feel free to contribute!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.