MTN Group: Reflected XSS on play.mtn.co.za

hello dear I have found Reflected XSS on play.mtn.co.za parameters injectable ?page=2 my payload "; URL: https://play.mtn.co.za/callertunez/?page=2%27%22%3E%3Cimg%20src=x%20onerror=alertdocument.domain%3E&search=A F1120432 Impact Malicious JavaScript has access to all the same objects as the rest...

MTN Group: [play.mtn.co.za] Application level DoS via xmlrpc.php

Description Wordpress that have xmlrpc.php enabled for pingbacks, trackbacks, etc. can be made as a part of a huge botnet causing a major DOS/SSRF. The website play.mtn.co.za has the xmlrpc.php file enabled and could thus be potentially used for such an attack against other victim hosts. hackeron...