Cobalt Vulnerability Wiki

V5 - Validation/Sanitization

XSS via Referer

Send the JS payload in Referer header Referer: javascript:alert('XSS'); See it’s reflected in the page

Low

low

Join some of these great clients we’re proud to have helped