XSS payload for XMLHttpRequest()
The source code says as below:
<script>
function doSearch(item) {
url = ‘https://api.mywebsite.com/search’
var xmlHttp = new XMLHttpRequest();
xmlHttp.onreadystatechange = function() {… Continue reading XSS payload for XMLHttpRequest()