Stored XSS in nerrorsec/googledorker

Valid

Reported on

Apr 3rd 2022

Description

Stored XSS via domain argument :

Proof of Concept

run this command ./GoogleDorker.py -d '"><svg onload=alert(1)>' visit created file

Impact

xss

We are processing your report and will contact the nerrorsec/googledorker team within 24 hours. 2 years ago

We have contacted a member of the nerrorsec/googledorker team and are waiting to hear back 2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada validated this vulnerability 2 years ago

rupesh-sshhh has been awarded the disclosure bounty

The fix bounty is now up for grabs

Niraj Khatiwada marked this as fixed in N/A with commit 7f242b 2 years ago

Niraj Khatiwada has been awarded the fix bounty

This vulnerability will not receive a CVE

to join this conversation

We are processing your report and will contact the nerrorsec/googledorker team within 24 hours. 2 years ago

We have contacted a member of the nerrorsec/googledorker team and are waiting to hear back 2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada modified the report

2 years ago

Niraj Khatiwada validated this vulnerability 2 years ago

rupesh-sshhh has been awarded the disclosure bounty

The fix bounty is now up for grabs

Niraj Khatiwada marked this as fixed in N/A with commit 7f242b 2 years ago

Niraj Khatiwada has been awarded the fix bounty

This vulnerability will not receive a CVE

to join this conversation