Stored XSS on

I was surfing the internet when I came across this web portal which I found to be vulnerable to Reflected XSS. So I attempted to make a Stored XSS because I noticed a kind of message board. I have created a temporary email for registering on the website, then I completed the registration phase….

Best XSS Vectors

Here’s a small #XSS list for manual testing (main cases, high success rate).

 "><img src onerror=alert(1)> 
"autofocus onfocus=alert(1)//

Try it on: – URL query, fragment & path; – all input fields.

From BruteLogic Twitter account :