25 items with this tag.
LAB 0.18
Lab: Reflected XSS into a JavaScript string with single quote and backslash escaped
LAB 0.19
Lab: Reflected XSS into a JavaScript string with angle brackets HTML encoded
LAB 0.20
Lab: Reflected XSS into a JavaScript string with angle brackets and double quotes HTML-encoded and single quotes escaped
LAB 0.17
Lab: Reflected XSS in canonical link tag
LAB 0.16
Lab: Stored XSS into anchor href attribute with double quotes HTML-encoded
Cross-Site Scripting (XSS)
Cross-site scripting (XSS) is an attack in which an attacker injects malicious executable scripts into the code of a trusted application or website.
LAB 0.15
Lab: Reflected XSS into attribute with angle brackets HTML-encoded
LAB 0.14
Lab: Reflected XSS with some SVG markup allowed
LAB 0.10
Lab: Stored DOM XSS
LAB 0.13
Lab: Reflected XSS with event handlers and href attributes blocked
LAB 0.9
Lab: Reflected DOM XSS
LAB 0.12
Lab: Reflected XSS into HTML context with all tags blocked except custom ones
LAB 0.11
Lab: Reflected XSS into HTML context with most tags and attributes blocked
BeEF
BeEF is a security tool, allowing a penetration tester or system administrator additional attack vectors when assessing the posture of a target.
LAB 0.7
Lab: DOM XSS in jQuery selector sink using a hashchange event
LAB 0.8
Lab: DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded
LAB 0.6
Lab: DOM XSS in jQuery anchor href attribute sink using location.search source
LAB 0.2
Lab: Stored XSS into HTML context with nothing encoded
LAB 0.3
Lab: DOM XSS in document.write sink using source location.search
LAB 0.4
Lab: DOM XSS in document.write sink using source location.search inside a select element
LAB 0.5
Lab: DOM XSS in innerHTML sink using source location.search
LAB 0.1
Lab: Reflected XSS into HTML context with nothing encoded