Blind XSS tips 1. There was No sign-up page. Only sign_in. 2. Changed sign_in to sign_up 3. sign_up page appeared 4. Put bxss payload. 5. Payload executed in the admin panel of the same domain. 6. Got cookie 7. Used cookie to login to admin panel. #bugbounty #bugbountytip
If there is a login page and no registration page. Try to change login to register. You may find a registration page if you are lucky. login => register or registration signin => signup sign_in => sign_up
Where you injected specifically? Or in all input fields on that form?
United States Tendenze
- 1. Comet 27.6K posts
- 2. Oviedo 5,158 posts
- 3. Fame 56.8K posts
- 4. Matt Campbell 1,791 posts
- 5. Amon Ra 1,194 posts
- 6. TPUSA 87.9K posts
- 7. The Password 3,521 posts
- 8. #MissVenezuela2025 1,516 posts
- 9. Letitia James 17.1K posts
- 10. The Supreme Court 34.2K posts
- 11. SCOTUS 14.8K posts
- 12. Teslaa 2,123 posts
- 13. Amorim 55.5K posts
- 14. fnaf 2 17.9K posts
- 15. Jarry N/A
- 16. ARSB N/A
- 17. Spaghetti 11.2K posts
- 18. #TakoTori1stConcert 1,016 posts
- 19. Jhostynxon Garcia 1,508 posts
- 20. #LightningStrikes N/A
Loading...
Something went wrong.
Something went wrong.