Check post xss on secondary page

Question

Check post xss on secondary page

Closed this issue 4 years ago · 1 comments

In example i have POST request
site.com/edit-account.php?username=1

And after that submit i need to check on another page site.com/myaccount.php is the xss is executed. , like --second-order in sqlmap

Answer 1 · 2021-02-02T15:07:55.000Z

It supports second order XSS if you navigate to the vulnerable page you will get prompted, check the source for function pinghost() its where the injection occurs