Cross-Site Scripting: Part 4 - How Output Encoding Stops XSS
6.9 هزار بار بازدید -
4 سال پیش
-
Twitter: @webpwnizedThank you for watching.
Twitter: @webpwnized
Thank you for watching. Please upvote and subscribe.
Cross-Site Scripting is a web application vulnerability that impacts the users of an application. If applications do not implement output encoding, a malicious actor may create phishing links, poisoned pages, or otherwise, inject malicious JavaScript into a web page viewed by the user. If this happens, the script will execute. There are different types of cross-site scripting including reflected, DOM-based, and stored or persistent. The Mutillidae II application used in the demos is available at https://github.com/webpwnized/mutillidae.
Thank you for watching. Please upvote and subscribe.
Cross-Site Scripting is a web application vulnerability that impacts the users of an application. If applications do not implement output encoding, a malicious actor may create phishing links, poisoned pages, or otherwise, inject malicious JavaScript into a web page viewed by the user. If this happens, the script will execute. There are different types of cross-site scripting including reflected, DOM-based, and stored or persistent. The Mutillidae II application used in the demos is available at https://github.com/webpwnized/mutillidae.
4 سال پیش
در تاریخ 1399/12/02 منتشر شده
است.
6,908
بـار بازدید شده