After finding the XSS/CSS vulnerabilities we can do thia javascript injetion in which we are giving such javascript queries and the server will response us.
How to define that this webpage contains the javascript ??
If the web page contais any of this things shown below then you can consider that this page co...ntains the javascript.
MsgBox:Site cookies:
Form editing:- Example- Another example (spoiler)- A faster way (spoiler)
Handy: - Rapidshare bypass- Make password fields visible
Flying pictures- Edit any website's layout- Facebook post bombing
After Finding The XSS Vulnerabilities We can do such below things with the javascript injection :-
(1) Message Showing :- We can show the message on the web page accoording to us.For that code is shown below.i. Javascript:alert(“Chintan”)
(2) Grab Cookies :- We can grab the cookies of the site.i. Javascript:alert(document.cookie)
(3) Free From Admin :- Suppose you were banned from the forum then they are using this type of code in that where ”authorized=no” code comes.so you can set its value to 1 by inputing this given below code.
Javascript:alert(document.cookie=”authorized=yes”)b.
Also you can input this thing to do this same,i. Javascript:alert(document:cookie=”admin=true”)
No comments:
Post a Comment