Found XSS in chat form in bug bounty but they say it’s only self XSS. How to leverage it?
I have found an XSS bug in a chat form on a bug bounty target. When I enter in the chat form input <button onclick="alert(1)">click</button> and after that I click the button a popup alert appears. I`ve sent the bug b… Continue reading Found XSS in chat form in bug bounty but they say it’s only self XSS. How to leverage it?