DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More

DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More Our team of security researchers was researching dating apps client-side security, and one of the main focus targets was the social search mobile app Tinder. After initial reconnaissance steps were done, a Tinder domain with multiple client-side security issues was found – meaning hackers could have access to users’ profiles and details. Immediately after finding these vulnerabilities, we […] The post DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and More appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2018/10/12/dom-xss-bug-affecting-tinder-shopify-yelp-and-more/