Payload of the Day #01-Dom XSS in jQuery Sink via location.hash
Tags: [XSS, DOM XSS, Web Security, jQuery, JavaScript]
Series: Payload of the Day
---
Context:
This payload targets a DOM-based XSS vulnerability in a site that uses jQuery’s $() selector and pulls user input directly from location.hash.
The vulnerab...
from-zero-to-cyber.hashnode.dev1 min read