Collaborate Disseminate
I am trying to figure out if the solution I am suggesting is valid for both XSS & CSRF protection,
I would like to store the JWT in an httpOnly & secure cookie and not in local storage,
when the user successfully logs in, he will g… Continue reading JWT cookie with CSRF token as a claim inside the JWT
I have a java web app. I’m using OWASP Java Encoder to encode for html, javascript and url components to mitigate reflected XSS. I’m new to this so I’m not sure on how to test on my web app for the following scenarios where there’s no dire… Continue reading How do I test for Reflected XSS in webpage titles, url parameters and javascript variables?
I have a java web app. I’m using OWASP Java Encoder to encode for html, javascript and url components to mitigate reflected XSS. I’m new to this so I’m not sure on how to test on my web app for the following scenarios where there’s no dire… Continue reading How do I test for Reflected XSS in webpage titles, url parameters and javascript variables?
I want to test an Angular SPA for any DOM-based XSS. How do I do that with OWASP ZAP?
Continue reading How to test an Angular SPA for DOM XSS with OWASP ZAP?
Considering the following facts, using CSRF token for a restful API (which of course is intrisincly session-less) seems inevitable:
storing JWT in local storage(any where other than http-only cookie) makes the API vulnerable to XSS attack… Continue reading How to implement the CSRF token mechanism for restful APIs?
I have been looking for signatures to detect xss and I keep seeing the tags csrf, sqli, lfi, rfe, and id assigned to the signatures.
I know what xss (cross-site scripting), csrf (cross-site request forgery), sqli (SQL injection), lfi (loca… Continue reading What does the tag "id" mean in terms of xss? [closed]
Is it possible to inject javascript inside of an HTML option tag?
For example, say you have the following html:
<select>
<option MALISCIOUS_CODE_HERE>Option Description</option>
</select>
If you were unable to … Continue reading HTML Option Tag XSS
I am trying to detect the presence of a blind/stored XSS vulnerability of an input field. The vulnerability does not trigger on page ‘A’ where the payload is injected.
It is likely due to the fact that the vulnerable field stores the value… Continue reading Detecting XSS when Payload is only Triggered on Another Page
I am trying to find an XSS in website protected by Cloudflare. I use Burp to find which HTML tags allowed.
Only the <script/> is tag disallowed. I tested multiple payloads to pass the WAF and this one is not blocked:
<img src=d… Continue reading Bypass WAF to perform XSS?
It seems like exploiting XSS is becoming harder with every browser version update.
My question is: Is this code vulnerable to XSS?
<script type="text/javascript">
var url = location.href;
document.write("URL: &… Continue reading Could this code be vulnerable to XSS?