I found A Stored xss Bug.
Reproduce this bug:-
1:- Go to Clicky Configuration
2.Enter Xss Payload @ Site ID:
4.xss payload executed. it is stored xss.
yes it require admin access but it is also a valid bug.. as Bug bounty program over internet..
patch & notify me ASAP
- The topic ‘Security Bug’ is closed to new replies.