Reflected XSS | Bug Bounty

 

Glad You're Here!

Lets Unlock the secrets of Reflected XSS with our expert guides

Hacking Aspirants, I am System.Exit


 

What is cross-site scripting (XSS)?

Cross-site scripting (also known as XSS) is a web security vulnerability that allows an attacker to compromise the interactions that users have with a vulnerable application. It allows an attacker to circumvent the same origin policy, which is designed to segregate different websites from each other. Cross-site scripting vulnerabilities normally allow an attacker to masquerade as a victim user, to carry out any actions that the user is able to perform, and to access any of the user's data. If the victim user has privileged access within the application, then the attacker might be able to gain full control over all of the application's functionality and data. 

 

Summary:

When visiting runpanther.io I got redirected to panther.com and the application failed to sanitise user's input resulting into HTML injection and possible XSS.
 

 

Steps To Reproduce:

1.  Go to [https://panther.com/search/Users%3Ch1%3EHello,%20I%20am%3C/h1%3E         %3Cfont%20color=red%3E%20Ibrahimatix0x01%3C/font%3E](https://panther.com/search/Users%3Ch1%3EHello,%20I%20am%3C/h1%3E%3Cfont%20color=red%3E%20Ibrahimatix0x01%3C/font%3E)


2.  You will notice that HTML codes in the search form are executed by the browser.
 

Supporting Material/References:

Impact


The vulnerability allow a malicious user to inject html tags and could possibly execute Javascript (if WAF is successfully bypassed)which could lead to steal user's session

Hi, I was able to bypass your WAF and I got full reflected XSS

Payload: 

 https://panther.com/search/test%3Csvg+on+onload%3D%28alert%29%28document.domain%29%3E

test<svg on onload=(alert)(document.domain)> 

 

Here Is A Video POC that shows Ful XSS Is Archieved: 

 
 
Panther Labs Staff Changed The Report Title From HTML Injection And Possible XSS To Reflected XSS on pather.com
 
Thanks for your research, @ibrahimatix0x01 . There is an initial remediation in place, and we believe the repro steps are no longer functional.

I couldn't have done this without readers like you. Thank you for reading and for your support, it's truly appreciated.


Location: Goa, India

Comments

Post a Comment

Popular Posts