Finding URI HTML Injection Opportunities
Query Google to find URI HTML Injection opportunities.
Pretty simple base query…
just add stuff like -intext:”Page Not Found” or site:.edu to the query to make it match your needs.
It also helps if you start adding things in the query like html tags in the url. So, for example….
inurl:”3C*3E” inurl:”font*font” -intext:3C -intext:font
inurl:”3C*3E” inurl:”strong*strong” -intext:3C -intext:strong
It is not perfect, but it can give you an idea of sites that Google is used to indexing pages with this kind of garbage in the URL.No tags for this post.