For every bounty won throughout May 2021, huntr will donate half towards Indian COVID relief.
Stored xss via client CompanyName
First goto # ✍️ Description Stored xss
First goto http://127.0.0.1:8000/leads/create and create a new client . During creation put xss payload xss"'><img src=x onerror=alert()> in CompanyName field and save it . Now open client by going http://127.0.0.1:8000/clients and see xss is executed