We'll be solving the Portswigger lab with the title "DOM XSS Using Web Messages". Learn about web messages and how they can be exploited to generate a cross site scripting attack.
Support This Channel
======================
Please like and subscribe, it means a lot!
Please buy me a coffee so I can continue to make content.
buymeacoffee.com/zenshell
Join our Discord
/ discord
00:00 Intro
00:18 What is a Web Message?
00:53 Experimenting with Web Messages
03:06 Exploring the Lab
05:07 Injecting HTML Payload
06:02 Mitigation Strategies
08:16 Writing the Exploit
11:07 Understanding TargetOrigin
15:22 Solving the Lab and Summary
Негізгі бет DOM Vulnerabilities - DOM XSS Using Web Messages
No video
Пікірлер: 9