self-xss – WindowsTechs.com

How to escalate or make a Self-XSS vulnerability more impactful when injecting a payload into the X-Forwarded-For header of a web request?

Posted on October 17, 2023 by Giancarlo Eduardo

I’m a beginner bug bounty hunter, and I recently came across a Self-XSS vulnerability during my security testing on a target website. The vulnerability occurs when I inject a payload into the X-Forwarded-For header of a web request. Howeve… Continue reading How to escalate or make a Self-XSS vulnerability more impactful when injecting a payload into the X-Forwarded-For header of a web request?→

Input field removing HTML tags when getting saved [closed]

Posted on September 1, 2023 by RAHUL RAWAT

I’m practicing XSS and there is one case where if I’m saving <script>alert(1)</script> the alert is popping up, but when it gets saved and I re-load the page I see only alert(1) and next refresh removes alert(1) also.
Is there … Continue reading Input field removing HTML tags when getting saved [closed]→

Using window.open(”,"_blank") can this be XSS exploited?

Posted on July 12, 2023 by Henry

If I have javascript that opens a window using the code below, the content is a user supplied variable that is not sanatized. Is there any security risk in this situation. The content will only be show back to the same user. No additional … Continue reading Using window.open(”,"_blank") can this be XSS exploited?→

SCRIPT TAG XSS (backslash bypass) [closed]

Posted on March 27, 2023 by Inventashif

The question is given in image

Continue reading SCRIPT TAG XSS (backslash bypass) [closed]→

DOM XSS only works when I enter a command in the console [closed]

Posted on September 1, 2022 by RachelKele

I think I have a working DOM XSS attack, but it only works when I run this command in the console:

document.write("<OPTION value=1>"+decodeURIComponent(document.location.href.substring(document.location.href.indexOf("… Continue reading DOM XSS only works when I enter a command in the console [closed]→

XSS Triggers only when pasted in

Posted on September 8, 2021 by Legolas

I have a XSS case that I would like to exploit as a proof of concept, however the payload seems to only be triggering when pasted in and not from the URL.
Basically, I have a search box which when pasting in the following XSS payloads trig… Continue reading XSS Triggers only when pasted in→

Does this qualify as Filename Upload DOM-XSS?

Posted on July 19, 2021 by Maicake

An application has the following javascript code which is triggered whenever an user tries to upload a file.
a.html(fileName)

then if the user uploads a file named <img src=x onerror=alert()> the javascript code is executed.
Does th… Continue reading Does this qualify as Filename Upload DOM-XSS?→

Found XSS in chat form in bug bounty but they say it’s only self XSS. How to leverage it?

Posted on May 25, 2021 by SerCio

I have found an XSS bug in a chat form on a bug bounty target. When I enter in the chat form input <button onclick="alert(1)">click</button> and after that I click the button a popup alert appears. I`ve sent the bug b… Continue reading Found XSS in chat form in bug bounty but they say it’s only self XSS. How to leverage it?→

Further exploit self XSS

Posted on February 24, 2021 by Opera of the Phantom

I´m pentesting a clients website and found a self XSS Vulnerability in the Login Page: in case of a login error the Error Page shows the Username, so if you input <script>alert("XSS")</script> as User, it shows the al… Continue reading Further exploit self XSS→

Drupal Core: Behind the Vulnerability

Posted on December 2, 2020 by Dor Tumarkin

As you may recall, back in June, Checkmarx disclosed multiple cross-site scripting (XSS) vulnerabilities impacting Drupal Core, listed as CVE-2020-13663, followed by a more technical breakdown of the findings in late November. Today, we’re releasing de… Continue reading Drupal Core: Behind the Vulnerability→