dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
386ebfe142a1ec501516374fcb199ea2dfc87d3a
WebGoat/webgoat-lessons/cross-site-scripting/src/main/resources/lessonPlans/en/CrossSiteScripting_content5.adoc
Nanne Baars e169650ebc Update documentation
2021-12-15 17:47:12 +01:00

10 lines
354 B
Plaintext
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

== Reflected XSS scenario
* Attacker sends a malicious URL to the victim
* Victim clicks on the link that loads a malicious web page
* The malicious script embedded in the URL executes in the victims browser
** The script steals sensitive information, like the session id, and releases it to the attacker
*Victim does not realize attack occurred*
Reference in New Issue View Git Blame Copy Permalink