Self (XSS) on [komunitas.bukalapak.com]

Vulnerable URL: https://www.komunitas.bukalapak.com
Vulnerability: cross site scripting (XSS).
Severity: Medium

Below are the steps to reproduce the XSS vulnerability

  1. Go to https://https://komunitas.bukalapak.com/news/submit#load
  2. Submit here ,

https://www.youtube.com/watch?v=09qXEJOkaO4
Have a happy cross site scripting 😃

15/03/2019 ~ Report Vulnerability
18/03/2019 ~ Bug Valid.
19/03/2019 ~ Bounty Rewarded ( $50,00 USD )

NB : I found’s 2website bugs : ( bukalapak.com & komunitas.bukalapak.com )

#Regards