|
|
|
|
|
|
by hackeroneuser
3104 days ago
|
|
|
I will not say anything about whether he needs to get paid or not until Uber discloses the report. If he showed that it is a valid xss and not a content injection then I guess it would be valid. But again, right now we do not have the report made public. |
|
|