Blind XSS tips 1. There was No sign-up page. Only sign_in. 2. Changed sign_in to sign_up 3. sign_up page appeared 4. Put bxss payload. 5. Payload executed in the admin panel of the same domain. 6. Got cookie 7. Used cookie to login to admin panel. #bugbounty #bugbountytip
If there is a login page and no registration page. Try to change login to register. You may find a registration page if you are lucky. login => register or registration signin => signup sign_in => sign_up
getting into js files of the login page can help to find the registration page many times
United States Xu hướng
- 1. Spotify 1.31M posts
- 2. #WhyIChime N/A
- 3. Chris Paul 39.4K posts
- 4. Clippers 54.4K posts
- 5. Ty Lue 4,979 posts
- 6. Hartline 13.6K posts
- 7. Apple Music 247K posts
- 8. Henry Cuellar 10.7K posts
- 9. Giannis 26.8K posts
- 10. ethan hawke 6,502 posts
- 11. SNAP 175K posts
- 12. #HappyBirthdayJin 118K posts
- 13. David Corenswet 10.4K posts
- 14. Lawrence Frank 3,848 posts
- 15. Jonathan Bailey 11.4K posts
- 16. Jack Smith 23.1K posts
- 17. Chris Henry Jr 3,011 posts
- 18. Courtois 6,612 posts
- 19. Garcelle N/A
- 20. Jackson Ford N/A
Loading...
Something went wrong.
Something went wrong.