Persistent XSS Vulnerability in White House Website



Alexander Fuchs, A German Security Researcher Discover Persistent XSS Vulnerability in Official website of White House. He said "The petition system is vulnerable. Every Petition i start or join will execute my code. I could join all petitions and my code will be executed on all users who visit the petition system."
The XSS Demo is here: https://wwws.whitehouse.gov/petitions/!/petition/security/WxgwM7DS
Advisory: https://vulnerability-lab.com/get_content.php?id=308

Found this article interesting? Follow THN on Facebook, Twitter and LinkedIn to read more exclusive content we post.