Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V5 - Validation/Sanitization

iframe Injection

POC

Insert your malicious payload in iframe You can test for SSRF also with the following HTML payload

test

Impact

Low-Medium-High (depends on the attack)

Likelihood

Low-Medium-High (depends on the attack)