Skip to content

Instantly share code, notes, and snippets.

@kdrypr

kdrypr/your-online-shop-xss-poc.txt

Last active June 10, 2020 22:06
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save kdrypr/5dac91c2d27c4dc82b1225dffa38f7a8 to your computer and use it in GitHub Desktop.
Save kdrypr/5dac91c2d27c4dc82b1225dffa38f7a8 to your computer and use it in GitHub Desktop.
Download ZIP
Your Online Shop XSS Vulnerability
Raw
your-online-shop-xss-poc.txt
I found stored XSS vulnerability in userarea Name Surname field. You can exploit with this payload <img src='aa' onerror='javascript:alert(1)' >
write in surname field.
https://i.imgur.com/Pj1A5bE.png
App Link: https://youronlineshop.sourceforge.io/sample/?userarea=1
Download link: https://sourceforge.net/projects/youronlineshop/
Version: 1.8.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment