Forum Discussion
Ivan_Chernenkii
May 05, 2020Employee
Does your /LoginHere.aspx contain HTML tag in response?
It must include HTML tag to be qualified. If this is so, then you need to send 10 requests to /LoginHere.aspx (no need to login), after that URL should be qualified for challenge injections.
Thanks, Ivan