Path: SDK β okxBtcJSBridge β Hse.java β Hzv.java β bundle.data β evaluateJavascript()
Vulnerable Methods: signPsbt, signPsbts, pushTx, pushPsbt
Target: bundle.getString("data") in Hzv.java lines 87, 121, 148
bundle.getString("data")
1. Connect Wallet 2. Test Connection 3. signPsbt XSS 4. signPsbts XSS 5. pushTx XSS 6. pushPsbt XSS