Svg based Stored Xss
Hi, hope you guys doing great! Here is a story about me finding a stored XSS using SVG files. Approach Found a target that has many features which included Discussion, Discovery, Mixtapes, Shorts, Activity and what not. I went ahead with looking at user dashboard. Why would I look for xss at a user dashboard where only I am the visitor? Nice Question! If I found XSS there then it would be considered a self XSS....