Cross-site Scripting (XSS) - Stored in yogeshojha/rengineValid
Aug 29th 2021
🕵️♂️ Proof of Concept
- Name a scan engine as a XSS payload. Example: <img src=x onerror=confirm(document.domain)>
- Schedule a scan for any target using the created scan engine.
- Try to delete the scheduled task
📍 Location rengine#L1