Amit Kumar Biswas @Amitlt2
2 min readApr 4, 2022


Hello, Hackers Welcome to my other write-up of Nokia Hacked with RXSS Vulnerability…

This time Nokia is my target…

I started from Google Dorks…

site:* inurl:/login.jsp?msg=

And I discovered this url

As you can see the msg parameter says ‘Session Timed out. Please Login Again’


  1. Simply I entered script tag into message parameter like this <script></script>
See what happened

2) I enterd this payload into messsage parameter.


Impact of Reflected XSS:

Attackers use phishing emails, malicious links, and other techniques to trick victims into making a request to the server. The reflected XSS malicious data is then executed in the victim’s browser.

Youtube Video:

Thanks for taking the time to read my write-up and share it with your friends, Like & Follow for more updates.

Follow me:







Amit Kumar Biswas @Amitlt2

Cyber Security Analyst at @avalanceGlobalSolutions | Security Researcher in | Cyber Security Researcher in Microsoft & Bugcrowd | R&D in Smart Contract |