Reflected XSS into a JavaScript string with angle brackets ... (Video solution, Audio)

preview_player
Показать описание
This video shows the lab solution of "Reflected XSS into a JavaScript string with angle brackets and double quotes HTML-encoded and single quotes escaped" from Web Security Academy (Portswigger)

  1. Michael Sommer
  2. Web Security
  3. Hacking
  4. Portswigger
  5. Burp
  6. Cross Site Scripting
Рекомендации по теме
Reflected XSS into 0:02:01

Reflected XSS into a JavaScript string with angle brackets HTML encoded (Video solution, Audio)

Reflected XSS into 0:01:27

Reflected XSS into a JavaScript string with angle brackets HTML encoded (Video solution)

Reflected XSS into 0:00:19

Reflected XSS into a JavaScript string with angle brackets HTML encoded

Reflected Cross-Site Scripting 0:06:30

Reflected Cross-Site Scripting (Reflected XSS) Explained

Reflected XSS into 0:03:10

Reflected XSS into a JavaScript string with single quote and ... escaped (Video solution, Audio)

Reflected XSS into 0:05:07

Reflected XSS into Javascript String - Cross Site Scripting Demonstration

Cross-Site Scripting Lab 0:06:39

Cross-Site Scripting Lab Breakdown: Reflected XSS into HTML context with nothing encoded

Reflected XSS into 0:06:00

Reflected XSS into a JavaScript string with angle brackets and double quotes HTML-encoded

Reflected XSS into 0:02:37

Reflected XSS into a JavaScript string with angle brackets and double quotes (Video solution)

Reflected XSS into 0:10:29

Reflected XSS into a JavaScript String with Single Quote and Backslash Escaped

Reflected XSS into 0:02:00

Reflected XSS into a JavaScript string with single quote and backslash escaped (Video solution)

Reflected XSS in 0:00:34

Reflected XSS in a JavaScript URL with some characters blocked

PortSwigger Labs - 0:09:58

PortSwigger Labs - Reflected XSS into a JavaScript string with angle brackets HTML encoded

Reflected XSS into 0:02:56

Reflected XSS into a JavaScript string with angle brackets ... (Video solution, Audio)

Reflected XSS into 0:01:12

Reflected XSS into attribute with angle brackets HTML encoded (Video solution)

Reflected XSS into 0:00:50

Reflected XSS into HTML context with nothing encoded (Video solution, Audio)

Reflected XSS into 0:01:40

Reflected XSS into a JavaScript string with angle brackets HTML encoded

Reflected XSS into 0:02:32

Reflected XSS into a JavaScript string with angle brackets HTML encoded

Reflected XSS into 0:06:50

Reflected XSS into a JavaScript string with single quote and backslash escaped - Lab#18

Reflected XSS into 0:04:54

Reflected XSS into a JavaScript string with angle brackets and double quotes HTML-encoded

Reflected Xss Into 0:02:55

Reflected Xss Into Java Script String With Angle Brackets, website security academy

PortSwigger Labs - 0:02:55

PortSwigger Labs - Reflected XSS into a JavaScript string with single quote and backslash escaped

Reflected XSS into 0:00:31

Reflected XSS into a JavaScript string with angle brackets HTML encoded

Reflected XSS into 0:04:22

Reflected XSS into a JavaScript string with angle brackets HTML encoded | Portswigger

Комментарии
Автор

are you teaching to solve or teaching to understand

musaumarfaruq
Автор

I would also like the breakdown of how the payload works.

whetfaartz
Автор

I don't understand. How payload is working
var searchTerms = '\\'-alert(1)//';
I get that // is for commenting out the ';
and '\\' basically means '\'
but i don't understand -alert(1)
if it is minus operation then it shouldn't work. we cant minus two strings.
Help me out here

krishnajaiswal
join shbcf.ru