Reflected Cross-Site scripting (XSS)

Thread Rating:

0 Vote(s) - 0 Average
1
2
3
4
5

Linear Mode

Reflected Cross-Site scripting (XSS)

kudzu Offline

Raccoon in Charge

Posts: 1,126
Threads: 33
Joined: Mar 2018
Reputation: 30
Location: Limassol, Cyprus

03-29-2022, 06:51 PM

Can you explain in more detail please? When you reference:

http://127.0.0.1:88/%24/StartCheck?<svg/...=alert(1)>

1) Thats not really XSS. Alert(1) is not dangerous and does not rely on another site etc.

2) Are you saying this allows alert to run in any IW application? Or only your application?

Find

« Next Oldest | Next Newest »

Messages In This Thread

Reflected Cross-Site scripting (XSS) - by MarcoRu - 03-23-2022, 03:00 PM

RE: Reflected Cross-Site scripting (XSS) - by MarcoRu - 03-29-2022, 04:33 PM

RE: Reflected Cross-Site scripting (XSS) - by kudzu - 03-29-2022, 06:51 PM

RE: Reflected Cross-Site scripting (XSS) - by MarcoRu - 03-30-2022, 07:32 AM

RE: Reflected Cross-Site scripting (XSS) - by joelcc - 03-30-2022, 02:00 PM

RE: Reflected Cross-Site scripting (XSS) - by kudzu - 03-30-2022, 09:02 PM

RE: Reflected Cross-Site scripting (XSS) - by MarcoRu - 03-30-2022, 02:29 PM

RE: Reflected Cross-Site scripting (XSS) - by Alexandre Machado - 03-31-2022, 09:44 AM

View a Printable Version

Users browsing this thread: 1 Guest(s)

Login
Username:
Password:	Lost Password?
	Remember me