dom – Page 5 – WindowsTechs.com

DOMXSS – Is Input Field Content an Attack Vector?

Posted on September 28, 2018 by countermode

A typical example for DOMXSS is that vulnerable code carelessly processes the part after the hash mark as in https://www.example.org/path/param1=val1&…#PAYLOAD_HERE without validation. For example, the string could be a… Continue reading DOMXSS – Is Input Field Content an Attack Vector?→

DOM-based XSS not creating pop-ups [on hold]

Posted on September 8, 2018 by user185823

I know some basics of DOM-based XSS. I know I have to look for Sources and Sinks if I want to detect DOM-based XSS.

Sources:

document.url
document.referrel
location
location.hash
location.pathname
location.search

Sink… Continue reading DOM-based XSS not creating pop-ups [on hold]→

Why this XSS payload doesn’t work?

Posted on July 25, 2018 by sam

TOday I needed to demo DOM Based XSS, and I came across this page which is made for the same exact purpose.
I wonder why <img+src+onerror=alert(1)> works but <script>alert(1)</script> does not?

Continue reading Why this XSS payload doesn’t work?→

DOM-based XSS with window.location.hash

Posted on May 20, 2018 by Robert Beran

Is the following code vulnerable to DOM-based XSS?

Shouldn’t I follow the OWASP DOM based XSS recommendations no matter where the payload is injected?

Posted on May 11, 2018 by Hipporaks

I heard/read at various contexts that DOM based XSS is caused by untrusted client side input and developers need to follow instructions at the OWASP “DOM based XSS Prevention Cheat Sheet” in order to mitigate it.

My questio… Continue reading Shouldn’t I follow the OWASP DOM based XSS recommendations no matter where the payload is injected?→

How do browsers handle document.write in this DOM based XSS case?

Posted on May 10, 2018 by Hipporaks

OWASP mentions the following example of code vulnerable to a DOM based XSS attack:

Select your language:
<select><script>
document.write(“<OPTION value=1>”+document.location.href.substring(document… Continue reading How do browsers handle document.write in this DOM based XSS case?→

Is this code in aspx vulnerable to xss? [on hold]

Posted on May 8, 2018 by nufyocukko

I would like to know if my code is vulnerable to XSS. It’s a page in aspx and well, my question is with the “onsubmit” as it is in the DOM, is vulnerable to xss?

<form name=”form1″ method=”post” action=”default.aspx” onsu… Continue reading Is this code in aspx vulnerable to xss? [on hold]→

Is this code vulnerable to DOM XSS?

Posted on February 20, 2018 by Emil B

I would like to know if this piece of code is vulnerable to HTML Injection/DOM XSS and how/why.

ld(b.createElement(“div”)), h = (ka.exec(f) || [“”, “”])[1].toLowerCase(), i = ma[h] || ma._default, g.innerHTML = i[1] + r.ht… Continue reading Is this code vulnerable to DOM XSS?→

Can the difference between reflected XSS and dom XSS be explained using real world examples?

Posted on June 28, 2017 by Gayatri Rachakonda

Can the difference between reflected XSS and DOM XSS be explained using real world examples?

For example, how is it possible to exploit or grab a remote victim’s cookies or session related information?

From I understand with reflected XSS, JavaScript injection is used.

For example:

 <script src="https://serveraddress/">filenae.js</script>

Is the same methodology used to exploit DOM based XSS?

Continue reading Can the difference between reflected XSS and dom XSS be explained using real world examples?→

How can I break this HTML DOM element? [on hold]

Posted on April 8, 2017 by WayneXMayersX

Which XSS vector would be efficient enough to break this DOM element?

<input type=”text” class=”primary textbox” name=”avatarurl” id=”avatarurl” value=”http://www.” onchange=”check_yes(‘avatar_yes’)” dir=”ltr” tabindex=”1… Continue reading How can I break this HTML DOM element? [on hold]→