Skip to content

Latest commit

 

History

History
17 lines (15 loc) · 767 Bytes

README.md

File metadata and controls

17 lines (15 loc) · 767 Bytes

corruptsvgfile

Corrupt SVG File With XSS.
Simply an image with stored XSS example that produces an alert box with the current domain

If this file is uploaded to a server and displays the alert box with the current domain after rendering, You have discovered a stored XSS

<script type="text/javascript"> alert(document.domain); </script>