Read Time:22 Second
Posted by Andrey Stoykov on Nov 21
# Exploit Title: Reflected XSS – fronsetiav1.1
# Date: 11/2024
# Exploit Author: Andrey Stoykov
# Version: 1.1
# Tested on: Debian 12
# Blog:
https://msecureltd.blogspot.com/2024/11/friday-fun-pentest-series-14-reflected.html
Reflected XSS #1 – “show_operations.jsp”
Steps to Reproduce:
1. Visit main page of the application.
2. In the input field of “WSDL Location” enter the following payload “><img
src=x…