Motoviaggiatore e Vlogger

HowTo find and fix XSS vulnerability

Find a xss’s vulnerable website is not very difficult. In most cases can write in the search: Code: “><script>alert(‘try_xss’);</script> This script does nothing more than send an alert on the…

Find a xss’s vulnerable website is not very difficult.
In most cases can write in the search:

Code:
“><script>alert(‘try_xss’);</script>

This script does nothing more than send an alert on the screen, if you see the alert means that the script is taken into the site.

Now we try to write:

Code:

“><script>alert(‘document.cookie’);</script> or
“><script>alert(document.cookie);</script>

If this xss works, we will see on the screen the alert within our cookies session of the site.

No Comments on HowTo find and fix XSS vulnerability

Google Developer Day 2008 – Milano

Ciao a tutti, siamo al gDay 2008, sono le 9:44, ci siamo appena registrati. Chi vi scrive e’ Langy e Anacleto44. Seguiremo gli eventi: – State of the open web…

Ciao a tutti, siamo al gDay 2008, sono le 9:44, ci siamo appena registrati. Chi vi scrive e’ Langy e Anacleto44.

Seguiremo gli eventi:
– State of the open web
– Google Data API
– App Engine
– Google Web Toolkit

Tra un po’ inizia il Keynote. quindi dobbiamo scappare. Vi aggiorneremo in seguito. Siamo in 320.

ci sono sedie colorate dappertutto!!! :]

Gli ingegnieri Google hanno il camice bianco con la scritta “Mi sento fortunato“.

No Comments on Google Developer Day 2008 – Milano

Type on the field below and hit Enter/Return to search