Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V5 - Validation/Sanitization

Reflected Self-XSS

POC

The same vulnerability with Reflected XSS, the only difference is that the only way to get the XSS is to tell the victim to type the malicious javascript code himself/herself and that will be called Self-XSS.

Impact

Low

Likelihood

Low