Tags » Cross-site Scripting

Google Acquisition Cross Site Scripting

Hi All,

I had found a cross site scripting vulnerability in one of the google acquisition and was awarded with a bounty.

Cross Site Scripting


CTF-InfoSecInstitude Web_level1
CTF(Capture The Flag) provided by InfoSecInstitude

First level1 is simple cross site scripting(XSS) exercise. This is simple webpage that provide ‘Site Name’ and ‘Site URL’ as input values. 348 more words


Cross Site Scripting (XSS) to Meterpreter

Hello Guys, Today we are going to learn about how we can exploit Cross Site Scripting (XSS) vulnerability and gain access over client’s system via meterpreter. 1,364 more words

Computer Security

3 - Cross-Site Scripting (XSS)

Cross-site scripting is a form of injection where an attacker can run malicious code from a client-side web application. This occurs when the application does not validate or sanitize the user input. 437 more words

Penetration Testing

IoT Security is Hard: Here’s What You Need to Know

Security for anything you connect to the internet is important. Think of these devices as doorways. They either allow access to services or provides services for someone else. 83 more words


Anatomy of an Ad-based Clickjacker

UPDATE: it looks like this issue in Safari on iOS (see below) may have been addressed by release 10.3.

Cool. So I was browsing a super cool website the other day (rollcall dot com) in Safari on an iPhone and all of the sudden this happens: 1,090 more words

Stored Cross Site Scripting (XSS) in Wordpress Profile Builder Plugin <= 5.2.7

Simple stored XSS found in WordPress Profile Builder Plugin version 5.2.7 and below.
This is just a PoC example, just fill in the minimum password length field with… 48 more words

Security Advisory