Please add sec-bounty flag ! Regards
Dupe of bug 780450? nhirata, what do you think?
Component: General → Video
Product: Core → mozilla.org
Summary: Flash XSS in mozilla → Flash XSS in http://people.mozilla.org/~nhirata/
Version: 34 Branch → other
Hey , Is this eligible for bounty ? I found similar issues in people.mozilla.org at different places . So this does constitute some risk as there were cookies ,donot whether they are sensitive information or not ?
This is an old bug – looks like a duplicate of #769755, in which Daniel remarks "people.mozilla.org" is intended for testing purposes and not bounty eligible: > people.mozilla.org is for mozillians to upload random test stuff. It is not a site covered by the web bounty, and since files are not uploaded through a web interface there's really no value to an XSS on that site -- there's no auth to compromise.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 11 months ago
Resolution: --- → DUPLICATE
Duplicate of bug: 769755
You need to log in before you can comment on or make changes to this bug.