A 15 years old independent security researcher from India, going with the name of Indrajeet Bhuyan has claimed to found cross site scripting vulnerability (XSS) on Photobucket.com; known for its image hosting, video hosting, slideshow creation and photo sharing services.
For security reasons Indrajeet did not provided further details of vulnerability but explained that this venerability can be used for further damage.
He also explained that complete details of this vulnerability have been reported to Photobucket which is now under process of patching.
Indrajeet Bhuyan also claims to have found several vulnerabilities in the websites of high profile companies in past, like Samsung, Jabong,NDTV and Colors TV.
