Skip to content

Instantly share code, notes, and snippets.

View HTMLEntitiesBypass.php
<!DOCTYPE html>
<!-- Vulnerable Code-->
<html>
<body>
<script>
document.write("<?php $xs=$_GET['payload']; echo htmlentities($xs);?>");
</script>