Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V5 - Validation/Sanitization

Reflected XSS

POC

  • Change input areas with a JS payload (an example: )
  • Observe that pop-up is reflected the message 1 in the page
  • Note: This is a broad concept, above payload is just an example

Impact

Low-Medium

Likelihood

Low-Medium