xss – Page 5 – WindowsTechs.com

is <script>javascript:alert(document.domain); a valid script for xss?

Posted on February 5, 2024 by Jaikaran saini

I have submit the following text <script>javascript:alert(document.domain); in a feedback of a restaurant listed on a website and feedback is sent to website not restaurant.
I want to verify but I am not sure if the code is valid or … Continue reading is <script>javascript:alert(document.domain); a valid script for xss?→

Why http-dombased-xss.nse script in nmap dosen’t work? [closed]

Posted on February 4, 2024 by okta pertiwi

I want to ask about the http-dombased-xss.nse script. When I’m testing DOM-based xss in xss.challenge.training.hacq.me/challanges/baby02.php. The test I’m doing with nmap is like this.
nmap -p80 –script http-dombased-xss.nse –script-args… Continue reading Why http-dombased-xss.nse script in nmap dosen’t work? [closed]→

Why http-dombased-xss.nse script in nmap dosen’t work? [closed]

Posted on February 4, 2024 by okta pertiwi

XSS Bypass Whitelist

Posted on February 1, 2024 by ELMO

I found a HTML injection on a markdown although it seems odd as the user already can use html in the box

So I tried to turn it to XSS but after a day with trial and error I concluded that the website has a whitelist that allows only and … Continue reading XSS Bypass Whitelist→

Upload a shell via XSS [closed]

Posted on January 19, 2024 by Don Schulz

Is it possible to upload a reverse shell and execute it via XSS?

Continue reading Upload a shell via XSS [closed]→

HTTPonly token without CSRF is safe?

Posted on January 7, 2024 by H01F

How can a hacker steal my session where my form does not have CSRF tokens but my session cookies are HTTPonly? how would he get my session cookie in this case? is this possible?
for example, to be clearer, I have my session authenticated i… Continue reading HTTPonly token without CSRF is safe?→

Is storing authentication tokens in local storage with a strong CSP safe?

Posted on December 28, 2023 by Mad Scientist

Whenever the topic comes up, almost every source recommends to never store authentication tokens in a place where they can be accessed by client-side Javascript. The recommendation is almost always to store them in an http-only cookie to p… Continue reading Is storing authentication tokens in local storage with a strong CSP safe?→

React chars to HTML encode?

Posted on December 23, 2023 by BooRuleDie

I’ve observed that React can HTML encode specific characters to prevent XSS vulnerabilities in certain contexts. For instance, consider the following code in App.jsx:
function App() {
const XSSProblematicChars = "><‘\"(… Continue reading React chars to HTML encode?→

CSP: Allow inline scripts while blocking javascript: in iframe src

Posted on December 18, 2023 by Chris Gunawardena

We wan’t to prevent attacks comming in from src attribute "javascript:" but still allow lnline script tags.
Currently the only option is to add sha-hash’s but there are too many inline scripts to do this.
Unfortunately we can’t m… Continue reading CSP: Allow inline scripts while blocking javascript: in iframe src→

Calculating CVSS scores for vulnerabilities in multi-tenant applications

Posted on December 16, 2023 by mateleco

Introduction
Multi-tenant vs single-tenant software architectures

Software multitenancy is a software architecture in which a single instance of software runs on a server and serves multiple tenants. Systems designed in such manner are &q… Continue reading Calculating CVSS scores for vulnerabilities in multi-tenant applications→