Reflected (XSS)on [alibabacloud.com]

Vulnerable URL: https://www.alibabacloud.com/s?k=
Vulnerability: File Upload XSS
Severity: High

Below are the steps to reproduce the XSS vulnerability

  1. Go to https://www.alibabacloud.com search test payloads test’xss /dll.
  2. Select Select Burp > chage this payload search ( test’xss > chage to Payload XSS
  3. Go to ‘Page search back‘ And this Vulnerability Reflected (XSS)’

Have a happy cross site scripting 😃

05/03/2019 ~ Report Vulnerability

#Regards