I have an academic project where I need to explore a vulnerable application.
One of the pages is this products where there is a search bar. I already did SQL Injection.
I tested the search box to check if it is vulnerable to XSS attacks and indeed it is, because if my input is
<script>alert("XSS");</script>
the alert pops.
Since this is non persistance because my input isn't stored in the database, what kind of attacks could I do with this vulnerability?
