Open l0v3j1 opened 5 years ago
The editor's source code view allows attacker to bypass the input validation in default view by injecting javascript using details. payload: Injected the the payload<details ontoggle="alert(1)"> into the editor's source code view.
<details ontoggle="alert(1)">
The editor's source code view allows attacker to bypass the input validation in default view by injecting javascript using details. payload: Injected the the payload
<details ontoggle="alert(1)">
into the editor's source code view.