A journey of in-wild exploit to getting issue fixed after 1 yr of discovery & week after fix downstream still unware: http://blog.anantshri.info/forgotten_disclosure_dom_xss_prettyphoto
A journey of in-wild exploit to getting issue fixed after 1 yr of discovery & week after fix downstream still unware: http://blog.anantshri.info/forgotten_disclosure_dom_xss_prettyphoto