2 matches found
Nextcloud: Reflected Self-XSS Vulnerability in the Comment section of Files (Different-payloads)
Note::steps mentioned in report164027 In the Comments Box,the payload to execute XSS is passed. Test Payloads: alert1 Also the above payload is still working.. Also try this payload " fooalert1 Click edit comment after posted. XSS Triggers...
Veris: Multiple Stored XSS on Sanbox.veris.in through Veris Frontdesk Android App
Hello Team, I have found multiple cross site scripting vulnerabilities on sanbox.veris.in due to the malicious input injected through veris frontdesk android app. Vulnerable App : Veris Frontdesk Android App Vulnerable Input Fields: 1 Who do you wish to meet? 2 Additional Information Payload used...