LivingSocial Password Reset XSS+CSRF

To me this XSS on LivingSocial was kind of fun. First of all the injection point was the first name of the user, which ... Continue reading