Tags » XSS

XSS Hunting Payloads

What is XSS ?

Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. 444 more words


Serious XSS vulnerability discovered in Signal

Researchers have discovered a serious cross-site scripting (XSS) vulnerability affecting all desktop versions of Edward Snowden’s favourite security application, Signal.

An XSS flaw is a nuisance in any application but in Signal, used by parties that want the highest levels of privacy, this is amplified. 462 more words


Pentesting considerations and analysis on the possibility of full pentest automation

The fact that even Optimus Prime and the Autobots needed human help to save Earth is a good hint on how I’ll be ending this post. 1,736 more words

Web Application

LinkedIn patches serious leak in its AutoFill plugin

LinkedIn has plugged a flaw in its AutoFill button that would have allowed a malicious website to harvest basic account data from your LinkedIn profile. 480 more words


some other xss on local domains

finding bugs on Sri Lankan web sites are pretty easy and interesting. all those vulnerabilities 39 more words

WebApp Hacking

A lot of talk has come around about the importance of web app hacking and exploiting of such apps. Here’s a repo of some of the more important – or let’s say – more frequently looked up information. 140 more words