Collaborate Disseminate
I’ve been doing a lot of bug bounties lately and although I’ve been gaining reputation and experience, I never seem to find XSS even in private programs. Items are always being reflected as HTML.
It seems unlikely that all o… Continue reading What is the XSS auditor in Chrome/Firefox and how do I find bypasses?
I found a website that reflected back the user inputs. But the problem is when I inject this payload <svg/onload=alert(1)> I get an error.
But when I use this payload <%20svg/onload=alert(1)>, my input reflects b… Continue reading Bypass this unique XSS filter?
I have this vulnerable code which takes a GET parameter, and puts it inside a HTML element (h1) as well as inside a HTML attribute (data-text):
$data = $_GET[“payload”];
echo “<h1>” .$data. “</h1>”;
echo ‘<div… Continue reading Why does Chromes XSS filter block injection into HTML element, but not into attribute?
In some basic steps:
POST Request containing a photo with multipart/form-data.
HTTP/1.1 302 Found respond with redirect back to formular
Redirect to initial formular.
In case 1 we are able to control the filename allowing… Continue reading How to bypass response Location in order to obtain content XSS?
Most of the modern applications are using CDN for third party libraries. For example, let’s say I use xxxv2.min.js from cdn.example.com/xxxv2.min.js
Everything is good, until the day that company has been hacked and their min… Continue reading How to ensure the third party CDN is secure (and stays secure)?
I am trying to perform XSS on the injection point marked with XXXX here:
<div>
<textarea name=”billing[something]” id=”billing-something” rows=”1″
type=”phone” title=”something” placeholder=”something” cols=”80″>
XXXX
… Continue reading XSS in textarea when < and > are not allowed?
i was trying to exploit a website using XSS, but whenever I try an injection containing <, >, / or * I get the following message:
I think website is trying to protect against XSS commands using something like a plugi… Continue reading How to bypass server side XSS filter for characters like < > / *
<img class=”avatar” src=”MY INPUT SPACE”>
I am trying to bypass an XSS filter but it is not working since given <, > are filtered. I feel like it I could break it since only these two characters are filtered but … Continue reading Bypassing <, > XSS filter
I was browsing a site recently that looked like it had been designed in 2000. However, this site has a good Alexa rank and a fairly active online community. For the protection of the site, I will not give specific details abo… Continue reading How to report a vulnerability in a site that wants to call the FBI?
I tried to evaluate the effectivity of xsser (http://xsser.03c8.net) by letting it run against the “Web For Pentester” XSS tests (https://pentesterlab.com/exercises/web_for_pentester/course) is it implements very easy exploit… Continue reading xsser fails to find easy XSS vulnerability (Web For Pentester)