Advertisement
rahulkakodiya

Untitled

Nov 22nd, 2022
3,311
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.45 KB | None | 0 0
  1. WAF bypass XSS Vulnerability in Telegram
  2.  
  3. Reflected cross-site scripting (or XSS) arises when an application receives data in an HTTP request and includes that data within the immediate response in an unsafe way.
  4.  
  5. Payload: echo https://target.com | waybackurls | grep "=" | egrep -iv".(jpg|jpeg|gif|css|tif|woff|woff2|icon|pdf|svg|txt|js)" | uro | qsreplace">'|freq Target: Expect More. Pay Less.
  6.  
  7. Mitigation
  8. Update to latest version of Telegram
  9.  
  10.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement