Self-XSS From File Upload Name
I encountered this type of vulnerability a couple of times but was not able to fully exploit it.
This vulnerability is a self-xss which is triggered from file names. E.g. If I were to upload a file named [xss-payload].png, it will be execu… Continue reading Self-XSS From File Upload Name