© 2023 Hashnode
#xss
This post has been ported from my old self-hosted blog. The original post was published on 05/05/2020. Back in April, Michał Bentkowski posted an XSS challenge on Twitter. So I decided to give this a…
This post has been ported from my old self-hosted blog. The original post was published on 02-04-2020. In this post, I will walk you through how, in less than five minutes, I found a self-XSS bug on …
Cross-site scripting (XSS) is a type of security vulnerability that allows an attacker to inject malicious code into a website or web application, potentially compromising its users. XSS attacks are o…
Bismillah What an eventful day, the second day of Jr. Pentesting was all reading and a bit of practice. This first week I'm just learning, then next week I'll continue with my Portswigger practice, mi…
In today's world, cyber attacks are becoming more and more sophisticated. Two common types of attacks that websites and applications face are: HPP (HTTP Parameter Pollution) XSS (Cross-Site Scriptin…
archived chall: archived by sandr0 difficulty: easy description: I’m using this super secure big company open source software, what could go wrong? Two credentials are provided, admin and regular user. The challenge consists of a serve…
Originally published on Dev.to. If you are a website developer, you have most probably protected yourself from common attacks such as XSS, SQL, CSRF, etc. But are you safe from a Clickjacking attack? …
When writing code with JavaScript, one of the most important things a developer can do is make sure their code is secure. To achieve this, there are a number of best practices, code examples and tools…
A few days ago, we have recently noticed some strange access to one of our customer portals, some kind of direct external access to a specific account, nothing dangerous for customers' data, but just …
It is an older problem, but we must know it because we are the effect of our causes. and our causes lie in history. And so studying history is merely studying the self. Today we have XSS to learn. Cro…