Commit c6793ac 1 parent 4753e33 commit c6793ac Copy full SHA for c6793ac
File tree 1 file changed +3
-1
lines changed
1 file changed +3
-1
lines changed Original file line number Diff line number Diff line change @@ -53,7 +53,7 @@ Stored Xss are mostly found manually
5353 3 . Try Payload in File name of profile picture and also in the source file of image.
5454 4 . Try in Comment section anywhere on target site.
5555 5 . Try on every input fields which get reflected in page and which can be seen by other users.
56-
56+ 6 . Try to signup using your name + xss payload and that can lead to stored xss.
5757* Tips*
5858- For every input field
5959 - Try to get ```<a href=#>test</a>``` an entity in
@@ -62,6 +62,8 @@ Stored Xss are mostly found manually
6262
6363* Video's*
6464- https://www.youtube.com/watch?v=uHy1x1NkwRU
65+ Writeup:
66+ -https://medium.com/@fatin151485/how-i-found-my-first-stored-xss-on-popular-eboighar-com-6bd497b0bb96
6567
6668# Blind Xss
6769Similar to Reflected Xss Or Stored Xss But you Dont get any reflection, but you get response on you server.
You can’t perform that action at this time.
0 commit comments