[BugBounty] Tips to Find Stored XSS

Intro

Today, I would like to share some simple and quick ways to find stored XSS (Cross-site Scripting) vulnerabilities as well as 2 stored XSS vulnerabilities that I reported in HackerOne private programs.

For anyone who is new to AppSec or Bug Bounty, the stored XSS (aka persistent XSS) occurs when an application receives user-input data and save that data within the…