vulnerability cross site scripting
severity 7.6
language php
registry other

✍️ Description

Cross site scripting via redirect url

🕵️‍♂️ Proof of Concept

goto your boxbilling account and visit . here put xss paylaod xss"'><img src=x onerror=alert()> in the redirect url field After saved you can see xss is executed

Video Poc -->

💥 Impact

xss attack