Scam Alert: scantrust.com — Silent Fix,No Response
Company / Program: scantrust.com
Platform: Self-Hosted · Severity: high · Scam type: no-payout
Published:
Reported by: Zeeshan1337
I reported a Stored XSS vulnerability to ScanTrust. After a few weeks, they patched the issue without replying to my report.
Even after the patch, some HTML injection tags are still working, which means the issue was not fully fixed.
It is disappointing that they fixed the vulnerability but never acknowledged or responded to the report.