what do you know about that?
>>54955663
They are paid reasonably well in bug bounties.
nothing i am simply a web developer with no real web development skills
i have no idea about c/c++, assembly code auditing or fuzzers
>>54955722
Wow, I have never heard about that one..
Just let the masses of (wannabe) whiteheads do the work, the industry will just feed them some peanuts.
Disgusting what the interwebs have become..
>>54955663
Usually caused by unescaped code inclusion.
>>54955847
know any examples of regex filter bypass xss?
Imagine you build a website with a comment section. Now someone writes<script>alert('XSS');</script>in a comment. If you were a retard, now everybody will get an alert message saying 'XSS' when they open your webpage.
That is probably the most basic form of XSS.
>>54956717
only if the website owner is a retard
>>54955663
but "cross" doesn't start with x