Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
Your Online Shop XSS Vulnerability
I found stored XSS vulnerability in userarea Name Surname field. You can exploit with this payload <img src='aa' onerror='javascript:alert(1)' >
write in surname field.
https://i.imgur.com/Pj1A5bE.png
App Link: https://youronlineshop.sourceforge.io/sample/?userarea=1
Download link: https://sourceforge.net/projects/youronlineshop/
Version: 1.8.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.