-
[xss] lab reflected xss in canonical link tag 91a3bebacab64b8782e168b065e530f4
[XSS] Lab: Reflected XSS in canonical link tag let’s view the page source and search for rel Access key is a way to exploit a conical tag access keys are shortcuts for focusing on elements and clicking hrefs. so let’s look into the view page source to see how exactly the link...
-
[xss] lab stored xss into html context with nothin 71ea2675e4594cf58882107ebdc23c26
[XSS] Lab: Stored XSS into HTML context with nothing encoded lets try and do stored XSS so we need to find comment section most likely so that way we can properly exploit this vulnerability. now every time going into the website: now lab solved.
-
[xss] lab reflected xss into a javascript string w 11f4c5dffabc4305a14b616e7cb7b6a7
[XSS] Lab: Reflected XSS into a JavaScript string with angle brackets HTML encoded so again we’re being enclosed within single quotes so I did a view input until I got to know that it didn’t encode ‘ ; - or ( ) characters so we can effectively escape this javascript string by...
-
[xss] dom xss in document write sink using source c2bf0699a3e04c6d85fbcd6d56d5be2c
[XSS] DOM XSS in document.write sink using source location.search our search query is being passed to a img src tag in HTML lets see if there is a way to escape this HTML tag.
-
[xss] lab stored xss into onclick event with angle 7354e3e2d2f740a18e08c47fe4ae5857
[XSS] Lab: Stored XSS into onclick event with angle brackets and double quotes HTML-encoded and single quotes and backslash escaped so the website is some type of blog so the common place for XSS here is gonna be in the comment section since those comments are stored. so the website requires a http or...
-
[xss] lab dom xss in innerhtml sink using source l e11659210ee645ba8c21e993072fb3ef
[XSS] Lab: DOM XSS in innerHTML sink using source location.search we were able to inject HTML "><u> test123 since we’re using inner HTML but no alert occurred
-
[xss] dom xss in angularjs expression with angle b d537b1197f5d426fb8331ee71531c991
[XSS] DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded so one of the first things we want to do it verify it is using angular JS just to practice so we know how to identify it. one way is to look for the ng-app in the...
-
[xss] stored dom xss 4769cf0e81e94443b08feb74ff8c62da
[XSS] Stored DOM XSS
-
[xss] lab reflected xss into html context with all 7950e9f0dd0c4d42b63287ef3a101a15
[XSS] LAB: Reflected XSS into HTML context with all tags blocked except custom ones so this lab is rejecting all tags but custom HTML tags we can see an example of this when we refer to and as you can see we were able to inject our own tags. one...
-
[xss] dom xss in document write sink using source e1e68ed51add4361b03ba793444133c7
[XSS] DOM XSS in document.write sink using source location.search inside a select element lets go to the site and begin testing for XSS so for a possible injection point we’re within the context of JS script since we’re within the context of a HTML tag lets look for a event handler that work with on...