XSS - Reflective

  • LAST UPDATED DATE: 2015/11/25
  • LAST UPDATED BY: @mubix

Summary

Cross-site scripting (XSS) is a vulnerability that enables attackers to inject client-side code into web applications.

Capabilities and Risk

  • Worst case RCE (see reference for Hipchat below)

Detection

How does one detect the exploitation of this vulnerability, or detect its presence.

Remediation

What are some of the ways to fix this vulnerability?

References

Exploitation

A write up on how this vulnerability can be exploited with demo code or screen shots

Want to contribute? Check out the readme and contribution page or Get in touch!
Last updated on 5th Jul 2017