mobile.yahoo.com - postMessage Origin Bypass to DOM XSS

Exploit Configuration

Attacker Origin:

Target: https://mobile.yahoo.com

Vulnerable Regex: /https:\/\/(.+[.])?pfs.yahoo.com(:[0-9]+)?/

Regex Match Result:

Attack Steps

Start Exploit Stop

Payload:

Alert box (classic PoC) Benign: Change page title

Log