...
An XSS flaw involves exploiting the browser’s interpretation of HTML/Javascript when displaying data. If you display any unprotected data in the page – that is, without taking care to convert the characters that are being interpreted - the browser will be able to interpret the variables that are displayed as HTML or Javascript.
Notetip | ||||
---|---|---|---|---|
Example. Page :
Exploitation :
Result: |
...