For every bounty won throughout May 2021, huntr will donate half towards Indian COVID relief.
Stored xss via lead title
First goto http://127.0.0.1:8000/leads/create and create a new lead . During creation put xss payload xss"'><img src=x onerror=alert()> in Title field and save it . Now open lead by going http://127.0.0.1:8000/leads and see xss is executed