PostMessage POC Builder

This is a PoC to demonstrate a postMessage vulnerability on .

Settings

 Use iframe instead of window.open

URL: 

Payload(s): 



Send




+ add another payload


 Send payload as JSON object

Max messages: 

 Autosend payload(s)

---

Any postMessage data sent back to this page will be printed below:

---

Open this POC in a sandboxed iframe