Blind XSS tips 1. There was No sign-up page. Only sign_in. 2. Changed sign_in to sign_up 3. sign_up page appeared 4. Put bxss payload. 5. Payload executed in the admin panel of the same domain. 6. Got cookie 7. Used cookie to login to admin panel. #bugbounty #bugbountytip
If there is a login page and no registration page. Try to change login to register. You may find a registration page if you are lucky. login => register or registration signin => signup sign_in => sign_up
Where you injected specifically? Or in all input fields on that form?
United States เทรนด์
- 1. Black Friday 384K posts
- 2. Mississippi State 2,702 posts
- 3. Kamario Taylor N/A
- 4. Egg Bowl 4,265 posts
- 5. Emmett Johnson N/A
- 6. #SkylineSweeps N/A
- 7. NextNRG Inc 1,790 posts
- 8. Trinidad Chambliss N/A
- 9. Wetjen N/A
- 10. #Rashmer 23.7K posts
- 11. Stricklin N/A
- 12. #FanCashDropPromotion 1,706 posts
- 13. Solo Ball N/A
- 14. Kewan Lacy N/A
- 15. #Huskers N/A
- 16. #jonita 19.7K posts
- 17. Black Ops 7 XP 1,328 posts
- 18. WHO DEY 5,328 posts
- 19. Fisch N/A
- 20. Mainz Biomed N.V. N/A
Loading...
Something went wrong.
Something went wrong.