## Summary: Hello team! I was tampering with the dest parameter in accounts.reddit.com and found out it is vulnerable to Cross Site Scripting once the victim performs the log in. ## Steps To Reproduce: 1. Enter to the following link: ```https://accounts.reddit.com/?dest=javascript:alert(document…