Search results

From Security Weekly Wiki
Jump to navigationJump to search
  • =HTML5 Storage Exfil via XSS= ...ullock (@dafthack) & Mike Felch (@ustayready) demonstrate how to exploit a XSS vulnerability to access HTML5 local storage to steal a cookie.
    605 bytes (88 words) - 16:30, 16 January 2018
  • ...co_callmanager_crossite_scr.html Cisco Call Manager XSS] - NOT voIP vuns! XSS != VoIP
    3 KB (406 words) - 19:52, 10 October 2014
  • ...d 2016. Aaron follows up on Apple vs FBI, and talk about the Drown Attack, XSS vulns in ad networks, and getting into infosec. #[http://randywestergren.com/widespread-xss-vulnerabilities-ad-network-code-affecting-top-tier-publishers-retailers/ XX
    991 bytes (102 words) - 17:00, 8 June 2017
  • ...the name from way back in 2000. These attacks, which are often labeled as XSS attacks are very common. Basically, this is one of the first types of atta - Facebook itself (and all BBS type systems) are really just one big xss anyway. As long as there have been bulletin boards, there have been trolls
    14 KB (2,605 words) - 16:07, 2 May 2019
  • ...statistics-patches-xss-flaw/146248/ WordPress Plugin WP Statistics Patches XSS Flaw]
    2 KB (237 words) - 15:45, 17 July 2019
  • #[http://www.securityfocus.com/archive/1/516948 XSS in Nagios] - [Larry]
    2 KB (296 words) - 14:50, 10 October 2014
  • ...uter-Science related.<br><br> We are going to talk about the resurgence of XSS after the big British Airways and NewEgg hack. I have some relevant referen
    2 KB (222 words) - 15:44, 11 December 2018
  • ...a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He likes to exploit vulnerab
    2 KB (218 words) - 15:43, 11 December 2018
  • ...a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He likes to exploit vulnerab
    2 KB (240 words) - 17:10, 7 May 2019
  • # What led to the creation of the XSS cheat sheet? Do you keep this actively maintained? What about the RFI list # What is the most interesting XSS attack you have ever seen?
    10 KB (1,589 words) - 15:14, 10 October 2014
  • [[TS_Episode23| Episode #23]] - HTML5 Storage Exfil via XSS
    2 KB (274 words) - 15:33, 9 October 2018
  • ...a security researcher at Netsparker. He found filter bypasses for Chrome's XSS auditor and several web application firewalls. He likes to exploit vulnerab
    2 KB (308 words) - 16:51, 12 February 2019
  • ...ress_hole_for_five_years_affects_86_of_sites/ DEATH by COMMENTS: WordPress XSS vuln is BIGGEST for YEARS • The Register] ...org/blog/pen-testing/2014/12/04/cross-site-scripting-through-file-metedata XSS via metadata] - This is relevant to my interest.
    6 KB (784 words) - 20:13, 23 May 2017
  • ...org.uk/2014/11/critical-xss-flaw-affects-wordpress-3-9-2-earlier/ Critical XSS Flaw Affects WordPress 3.9.2 And Earlier] - Oh, and if you run Wordpress, h ...ference. From a defense standpoint, apply your patches. Likely a patch for XSS will not blow up your site, it could, but in all the years of maintaining w
    9 KB (1,424 words) - 20:14, 23 May 2017
  • ...e=article&sid=604 Hostfinger printing and portscanning with javaScript and XSS] - Very cool tactic that uses JavaScript to identify remote web servers and ...//www.f-secure.com/weblog/#00000927 Netscape Hacked!] - Well, if you count XSS. The hacker redirected users to Digg, Netscape's competitor. No malicious
    6 KB (905 words) - 01:14, 11 October 2014
  • ...register.co.uk/2015/09/03/sleepy_puppy_netflix/ Netflix releases reflected XSS audit tool for biz] ...b-a-chain-reaction-from-xss-to-rce/ ColdFusion Bomb: A Chain Reaction From XSS to RCE - Bishop Fox]
    7 KB (864 words) - 19:46, 6 June 2017
  • ...u would a PHP app, at least to start. Use BEEF to break into the clients, XSS doesn't help you break into the server unless you hook the sysadmins browse ...site left users vulnerable for 2 weeks (or more!). A user was able to use XSS to obtain cookie values of a differrent user after they had log in, effecti
    11 KB (1,857 words) - 01:16, 11 October 2014
  • * [https://research.securitum.com/xss-in-amp4email-dom-clobbering/ XSS in GMail’s AMP4Email via DOM Clobbering]
    3 KB (403 words) - 17:46, 26 November 2019
  • ...h-through-xss-flaw,-says-tech-firm-chief.html British Airways breached via XSS] [https://twitter.com/musalbas/status/1038191248216154113 JavaScript Update
    3 KB (390 words) - 15:29, 11 December 2018
  • ...you? Now we never have to worry about the dreaded javascript popup with "XSS" anymore. Now, we have frigging ASTEROIDS!
    7 KB (1,075 words) - 16:28, 29 June 2017

View (previous 20 | next 20) (20 | 50 | 100 | 250 | 500)