XSS attack is one of some web vulnerability that could very danger for web developer. If a web application support for xss attack it will be show pop up when attacker insert tag <script> on it. I show you how if a web application vulner of xss attack.
The following example is posting message web application that vulner with this attack :
If posting message success it will be save on database and it will be show when we click the title of message. When xss stored has been on web application attacker could do everything that attacker want . For example I tried insert javascript like this “<script>alert(“this vulner of XSS attack”);</script> on this web application
example :
when I click submit, message will be save on database and when another user read the title script will load and running :
there are many web application on internet could support this attack .
Tidak ada komentar:
Posting Komentar