当前位置:网站首页>Manually dig XSS vulnerabilities
Manually dig XSS vulnerabilities
2022-07-01 08:14:00 【Cwillchris】
One 、 Unfiltered XSS Inject
visit :https://xss-quiz.int21h.jp
notes : The content in the prompt will be displayed only after it is selected
example 1: First, let's take a look at the logical structure of the page
Input 1, spot Search,, Show that... Can't be found 1
F12 Look at the code , We input 1 Is loaded into the page
We load <script>alert(document.domain);</script>, then F12 Take a look at its place in the code . (document.domain # The property is a read-only string , Contains... To load the current document web The hostname of the server . )
Input <script>alert(document.domain);</script>, spot Search, Popup
边栏推荐
- P4 installation bmv2 detailed tutorial
- EDA open source simulation tool verilator beginner 6: debugging examples
- On June 30, 2022, the record of provincial competition + national competition of Bluebridge
- 使用beef劫持用戶瀏覽器
- 【网站架构】一招搞定90%的分布式事务,实打实介绍数据库事务、分布式事务的工作原理应用场景
- Practice and Thinking on the architecture of a set of 100000 TPS im integrated message system
- 如何使用layui将数据库中的数据以表格的形式展现出来
- Insufficient executors to build thread pool
- Codeworks round 803 (Div. 2) VP supplement
- Li Kou daily question - day 31 -1790 Can a string exchange be performed only once to make two strings equal
猜你喜欢
【刷题】字符统计【0】
OJ输入输出练习
The Windows C disk is full
![[untitled]](/img/b9/6922875009c2d29224a26ed2a22b01.jpg)
[untitled]
![[staff] high and low octave mark (the notes in the high octave mark | mark range are increased by one octave as a whole | low octave mark | mark range are decreased by one octave as a whole)](/img/ff/ebd936eaa6e57b1eabb691b0642957.jpg)
[staff] high and low octave mark (the notes in the high octave mark | mark range are increased by one octave as a whole | low octave mark | mark range are decreased by one octave as a whole)
【入门】输入整型数组和排序标识,对其元素按照升序或降序进行排序
【入门】提取不重复的整数
Latex formula code
【网站架构】一招搞定90%的分布式事务,实打实介绍数据库事务、分布式事务的工作原理应用场景
When using charts to display data, the time field in the database is repeated. How to display the value at this time?
随机推荐
Li Kou daily question - day 31 -1790 Can a string exchange be performed only once to make two strings equal
【入门】取近似值
Sqlalchemy creating MySQL_ Table
slice扩容机制分析
OJ输入输出练习
网关gateway-88
Basic number theory -- combinatorial number
力扣每日一题-第31天-1790.仅执行一次字符串交换能否使两个字符串相等
Gdip - hatchBrush图案表
On several key issues of digital transformation
How to check ad user information?
使用beef劫持用戶瀏覽器
Source code analysis of open source API gateway APIs IX
LM08丨网格系列之网格反转(精)
ContentType所有类型对比
empirical study and case study
Aardio - Method of self constructed geticonhandle
Learn reptiles for a month and earn 6000 a month? Tell you the truth about the reptile, netizen: I wish I had known it earlier
01 NumPy介绍
Data analysis notes 11