Groups
Sign in
Groups
ironwasp
Conversations
About
Send feedback
Help
XSS In Name
22 views
Skip to first unread message
Ismail Hossain
unread,
Oct 10, 2017, 11:04:22 AM
10/10/17
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to ironwasp
Hello,
I have Found A Bug On your Web .
Vulnerability :
XSS
In
name filed
Proof of Concept
1st i was
ironwasp server like of local host
http://localhost:9090/g0s/book/2
2nd i was go
http://localhost:9090/g0s/book/2
3rd and input name filed <img src=1 onerror=prompt(document.domain);>
3th see see
XSS
POC
http://prntscr.com/gvnzy9
Thanks
Ismail
Reply all
Reply to author
Forward
0 new messages