Cross-Site-Scripting — Stored (Change Secret & Cookies)

by Anshuman    May 30, 2019

This is the demonstration of Stored Cross-Site-Scripting attack in Change Secret and Cookies and for this demo, I’ll be using bWAPP and bWAPP is a buggy web application and we can use to test various vulnerabilities in the web.

BUG BOUNTY

Cross-Site-Scripting - Stored (Blog)

by Anshuman    May 29, 2019

When an attacker browsing a web application and found a vulnerability which allows him to embed an HTML tag into the input box and the embedded tag become a permanent item of that page and then the browser will parse this code every time whenever the page will get loaded.

BUG BOUNTY

Cross-site-Scripting — Reflected (phpMyAdmin & PHP_SELF)

by Anshuman    May 28, 2019

This is the demonstration of Cross-Site-Scripting attack in phpMyAdmin and PHP_SELF and for this demo, I’ll be using bWAPP and bWAPP is a buggy web application and we can use to test various vulnerabilities in the web.

BUG BOUNTY

Cross-site-Scripting — Reflected (EVAL & HREF)

by Anshuman    May 27, 2019

This is the demonstration of Cross-Site-Scripting attack in eval function and Hypertext reference and for this demo, I’ll be using bWAPP and bWAPP is a buggy web application and we can use to test various vulnerabilities in the web.

BUG BOUNTY

Cross-Site-Scripting — Reflected (User-Agent)

by Anshuman    May 25, 2019

This is the demonstration of Cross-Site Scripting attack in User-Agent header and for this demo, I’ll be using bWAPP and bWAPP is a buggy web application and we can use to test various vulnerabilities in the web.

BUG BOUNTY

Cross-Site-Scripting — Reflected (Custom Header)

by Anshuman    May 24, 2019

This is the demonstration of Cross-Site Scripting attack in Custom header parameter and for this demo, I’ll be using bWAPP and bWAPP is a buggy web application and we can use to test various vulnerabilities in the web.

BUG BOUNTY