Slickdeals app for iOS: Share sheet - Facebook Messenger UI not displaying correctly

iOS 13.4.1
Slickdeals app for iOS (version 5.16.0)
Date: 04/16/20

Description:

A common problem with iOS 13 and the iOS share sheet also happens with the Slickdeals app for iOS. As has been documented with numerous apps, there are certain apps that do no display the Facebook Messenger UI correctly.

Some apps, such as the Slickdeals app, display the Facebook Messenger pop-up UI incorrectly with the iOS device set to either the light or dark modes. Bizarre that this is repeatedly happening. Even more bizarre that Apple doesn't make this a standard test case for app store release compliance.

But I digress!

This is easier to show than to describe, so please take a look at the following screenshots...

This is with the iOS device set to dark mode. After opening up the iOS share sheet's Facebook Messenger option, you will see the unsightly white bar at the top....

This is with the iOS device set to light mode. This time there's a black bar at the top of the screen. In both instances, you can't see "Send" or "Done"

Steps to Reproduce:

1. With the iOS device set to either light or dark mode, download the Slickdeals app for iOS (version 5.16.0)
2. Select any product featured in the app
3. Select the share option for any product
4. From the share sheet, select the Facebook Messenger option
5. Note the misplaced bar at the top of the FB Messenger UI

Result: The Slickdeals app for iOS displays the Facebook Messenger UI incorrectly when accessed via the iOS share sheet

Expected: The Slickdeals app for iOS should be displaying the Facebook Messenger UI correctly when accessed via the iOS share sheet

This isn't the first bug with Slickdeals that I have documented. But this was the first problem I have seen with the Slickdeals app and the iOS share sheet!

Slickdeals app for iOS: XSS: Error if you try to change username to plaintext

iOS 13.3.1
Slickdeals: Save with Coupons app for iOS (version 5.14.1)
Date: 03/24/20

Description:

The Slickdeals: Save with Coupons app (version 5.14.1) for iOS has a minor XSS problem.

The app has "Request Username" option. If the user enters in the standard XSS term of "<plaintext>"..

The app displays an error message that indicates that there are additional XSS errors to be found...

Steps to Reproduce:

1. Download and launch the Slickdeals: Save with Coupons app for iOS
2. Select profile
3. Sign Up with either a Google or Facebook account
4. Select "Edit Username" from the pop-up
5. From the "Change Username" screen, enter in <plaintext>
6. Click on "Request Username"
7. Note "</p></div><footer><button class =" appears
8. Start looking for other XSS problems

Result: Entering in the standard XSS test term of "<plaintext>" in the "Request Username" area of the app results in an error indicative of an XSS failure

Expected: The Slickdeals app should handled the entry of "<plaintext>" gracefully - shouldn't display an error message that would encourage additional searches for XSS problems