Giters

H1Xploit / corruptsvgfile

Corrupt SVG File With XSS

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

corruptsvgfile

Corrupt SVG File With XSS.
Simply an image with stored XSS example that produces an alert box with the current domain

If this file is uploaded to a server and displays the alert box with the current domain after rendering, You have discovered a stored XSS

<script type="text/javascript"> alert(document.domain); </script>

About

Corrupt SVG File With XSS