Page 1 of 1
Wrong vulnerability type?! is a xss and i reported as been a xss, what you mean wrong?
Posted: Mon Nov 18, 2019 2:40 am
by PauloChoupina
1019244
yo i reported this as a Cross Site Scripting, and it is indeed a Cross Site Scripting..
Why you saying it was the "Wrong vulnerability type" ?!
Re: Wrong vulnerability type?! is a xss and i reported as been a xss, what you mean wrong?
Posted: Mon Nov 18, 2019 7:34 am
by x1admin
PauloChoupina wrote: ↑Mon Nov 18, 2019 2:40 am
1019244
yo i reported this as a Cross Site Scripting, and it is indeed a Cross Site Scripting..
Why you saying it was the "Wrong vulnerability type" ?!
We don't accept xss via sql inj errors
Re: Wrong vulnerability type?! is a xss and i reported as been a xss, what you mean wrong?
Posted: Mon Nov 18, 2019 2:56 pm
by PauloChoupina
wtf it is not a Sql injection is a straight foward reflected cross site scripting in a vulnerable parameter.
the payload is: </script><svg onload=alert()>
wtf you doing?
Re: Wrong vulnerability type?! is a xss and i reported as been a xss, what you mean wrong?
Posted: Tue Apr 21, 2020 3:53 am
by iamParagBagade
Hello admin...
I reported a stored XSS and also provided login id and password ...
So how it can be wrong type of Vulnerability ?
Fix this 1148098
Thanks...
Re: Wrong vulnerability type?! is a xss and i reported as been a xss, what you mean wrong?
Posted: Tue Apr 21, 2020 8:13 am
by x1admin
iamParagBagade wrote: ↑Tue Apr 21, 2020 3:53 am
Hello admin...
I reported a stored XSS and also provided login id and password ...
So how it can be wrong type of Vulnerability ?
Fix this 1148098
Thanks...
We don't accept xss via sql inj errors