You are currently viewing Cross-Site Scripting | REFLECTED XSS

Cross-Site Scripting | REFLECTED XSS

Cross-site scripting is a classic well-known type of attack that is possible because some software applications take user input in an insecure way. This happens via search fields, survey forms, cookies, and online web forms.

Types β†’ Reflected XSS, Stored XSS, and DOM XSS.

Reflected XSS β†’ This attack occurs when a malicious script is reflected in the website’s results.

Payloads are:

'-alert("XSS")-'
'-alert(document.cookie)-'
'-alert(document.domain)-'
'-alert(document.location="http://www.bing.com")-'  |  (301 Moved Permanently)

Here comes the POC

Thanks for reading! I hope this helps,

happy learning buddies! πŸ™‚

BOBBYTN

β„‚|π”Όβ„π•§πŸ™πŸ™ | π”Ήπ•¦π•˜ π•™π•¦π•Ÿπ•₯𝕖𝕣 | β„‚π•ͺ𝕓𝕖𝕣 π•Šπ•–π•”π•¦π•£π•šπ•₯π•ͺ ℝ𝕖𝕀𝕖𝕒𝕣𝕔𝕙𝕖𝕣 | 𝔼π•₯π•™π•šπ•”π•’π• β„π•’π•”π•œπ•–π•£ | 𝕄𝕒𝕀π•₯𝕖𝕣 π•šπ•Ÿ π•Šπ• π•”π•šπ•’π• π”Όπ•Ÿπ•˜π•šπ•Ÿπ•–π•–π•£π•šπ•Ÿπ•˜...

Leave a Reply