Blind XSS tips 1. There was No sign-up page. Only sign_in. 2. Changed sign_in to sign_up 3. sign_up page appeared 4. Put bxss payload. 5. Payload executed in the admin panel of the same domain. 6. Got cookie 7. Used cookie to login to admin panel. #bugbounty #bugbountytip
If there is a login page and no registration page. Try to change login to register. You may find a registration page if you are lucky. login => register or registration signin => signup sign_in => sign_up
getting into js files of the login page can help to find the registration page many times
United States الاتجاهات
- 1. Cyber Monday 41.2K posts
- 2. #IDontWantToOverreactBUT 1,237 posts
- 3. #Fivepillarstoken 1,564 posts
- 4. Alina Habba 21.2K posts
- 5. TOP CALL 11.1K posts
- 6. #GivingTuesday 2,403 posts
- 7. #MondayMotivation 9,373 posts
- 8. Shopify 4,210 posts
- 9. $MSTR 14.5K posts
- 10. #Rashmer 17.5K posts
- 11. Check Analyze N/A
- 12. Token Signal 3,182 posts
- 13. Adam Thielen N/A
- 14. Market Focus 2,633 posts
- 15. GreetEat Corp. N/A
- 16. JUST ANNOUNCED 18.9K posts
- 17. Victory Monday 1,664 posts
- 18. Mainz Biomed N/A
- 19. Luigi Mangione 4,030 posts
- 20. Clarie 3,207 posts
Loading...
Something went wrong.
Something went wrong.