Blind XSS tips 1. There was No sign-up page. Only sign_in. 2. Changed sign_in to sign_up 3. sign_up page appeared 4. Put bxss payload. 5. Payload executed in the admin panel of the same domain. 6. Got cookie 7. Used cookie to login to admin panel. #bugbounty #bugbountytip
If there is a login page and no registration page. Try to change login to register. You may find a registration page if you are lucky. login => register or registration signin => signup sign_in => sign_up
getting into js files of the login page can help to find the registration page many times
United States Trends
- 1. Chris Paul 14.9K posts
- 2. Clippers 23.5K posts
- 3. Good Wednesday 27.3K posts
- 4. #SpotifyWrapped 9,273 posts
- 5. #NSD26 3,275 posts
- 6. #WednesdayMotivation 3,164 posts
- 7. Happy Hump 5,822 posts
- 8. Hump Day 8,959 posts
- 9. FELIX LV VISIONARY SEOUL 24.2K posts
- 10. #FELIXxLouisVuitton 27.7K posts
- 11. National Signing Day 2,699 posts
- 12. TOP CALL 10.2K posts
- 13. Pat Spencer 2,870 posts
- 14. The BIGGЕST 322K posts
- 15. #JUPITER 155K posts
- 16. Nashville 32.4K posts
- 17. jungkook 268K posts
- 18. elden campbell N/A
- 19. Brandy 8,832 posts
- 20. Kerr 5,872 posts
Loading...
Something went wrong.
Something went wrong.