Tagged: XSS

XSSer – From XSS to RCE

Cross-site scripting (XSS) is a type of computer security vulnerability that is normally present in web applications. XSS allows attackers to implement client scripts on web pages viewed by other...

Bypassing XSS filters

In the XSS world, there are many tags, events, attributes can be used to execute js. Tag can execute js <script> <a> <p> <img> <body> <button> <var> <div> <iframe> <object>...

Cross site scripting payload for fuzzing

Collected some of the more useful XSS payload, used to bypass the waf and some applications: <sCrIpt>alert(1)</ScRipt> \<iMg srC=1 lAnGuAGE=VbS oNeRroR=mSgbOx(1)> <img src=’1′ onerror\x00=alert(0) /> <img src=’1′ onerror/=alert(0) /> <img...