VishalSolving Portswigger Academy: Exploiting XSS to perform CSRFThis lab contains a stored XSS vulnerability in the blog comments function. To solve the lab, exploit the vulnerability to perform a CSRF…3h ago3h ago
VishalSolving Portswigger Academy: Exploiting cross-site scripting to capture passwordsThis lab contains a stored XSS vulnerability in the blog comments function. A simulated victim user views all comments after they are…4h ago4h ago
VishalSolving Portswigger Academy: Exploiting cross-site scripting to steal cookiesThis lab contains a stored XSS vulnerability in the blog comments function. A simulated victim user views all comments after they are…4h ago4h ago
VishalSolving Portswigger Academy: Reflected XSS into a JavaScript string with angle brackets and double…This lab contains a reflected cross-site scripting vulnerability in the search query tracking functionality where angle brackets and double…4h ago4h ago
VishalSolving Portswigger Academy: DOM XSS in AngularJS expression with angle brackets and double quotes…This lab contains a DOM-based cross-site scripting vulnerability in a AngularJS expression within the search functionality.6d ago6d ago
VishalSolving Portswigger Academy: DOM XSS in jQuery selector sink using a hashchange eventThis lab contains a DOM-based cross-site scripting vulnerability on the home page. It uses jQuery’s $() selector function to auto-scroll to…6d ago6d ago
VishalSolving Portswigger Academy: DOM XSS in innerHTML sink using source location.searchThis lab contains a DOM-based cross-site scripting vulnerability in the submit feedback page. It uses the jQuery library’s $ selector…6d ago6d ago
VishalSolving Portswigger Academy: DOM XSS in innerHTML sink using source location.searchThis lab contains a DOM-based cross-site scripting vulnerability in the search blog functionality. It uses an innerHTML assignment, which…Oct 6Oct 6
VishalSolving Portswigger Academy: DOM XSS in document.writeThis lab contains a DOM-based cross-site scripting vulnerability in the stock checker functionality. It uses the JavaScript document.write…Oct 6Oct 6
VishalSolving Portswigger Academy: DOM XSS in document.write sink using source location.searchThis lab contains a DOM-based cross-site scripting vulnerability in the search query tracking functionality. It uses the JavaScript…Oct 2Oct 2