Tags » XSS

Dom Based XSS - Introduction

Introduction to DOM based XSS:
why to waste time in writing same thing again if you can read from online contents.

Discovering and Exploiting: 462 more words


Arbitary File Upload Vulnerability in Google Nest (Write Up)

In this article I will show you how I found a Arbitary File Upload Vulnerability in Google owned Nest which allows me to access Nest sensitive customer datas like… 86 more words

Arbitary File Upload

Notes on XSS Prevention

While normally to prevent XSS a simple character escaping function is considered enough, I had to fix an XSS vulnerability on a display where the characters from the user input that needs to be shown are already escaped. 162 more words

Programming Stuff

8chan DDoS or smoke and mirrors ?

The details are still a bit murky and a lot of theories and explanations have arose from the whole imgur/8chan XSS debacle but we know so far that someone uploaded images to popular image/gif sharing site… 119 more words

A brief overview of OWASP top 10 risks and what it takes to minimize them in java.(Part -2)

3.Cross-Site Scripting (XSS)

  • Overview

Attacker sends text based attack scripts that exploit the interpreter in the browser. Almost any source of data can be an attack vector, including internal sources such as data from the database. 391 more words

Web Security

WordPress Releases Security Updates

Earlier today, WordPress released version 4.3.1 of it’s popular self-hosted blogging tool/content management system (CMS, defined).

This update resolves 3 security issues:

The most serious issues was a cross-site scripting issue ( 174 more words

Security Advice


I found a XSS vuntability but when I use Chrome it doesn’t work. It says <Invalid Tag> where it should say <Script>. How could I prevent this?