VulnerableApp icon indicating copy to clipboard operation
VulnerableApp copied to clipboard

Published 20 hours ago verified publisher icon SasanLabs

Add data uri based xss attack

Open preetkaran20 opened this issue 5 years ago • 2 comments
trafficstars

Is your feature request related to a problem? Please describe. Adding Data uri based xss e.g. data:text/html,

Describe the solution you'd like As XSS vulnerability is already there. it would be great if we add dataUri there too.

Describe alternatives you've considered Nothing

Additional context Waheguru !!! Satnaam

preetkaran20 avatar Jun 05 '20 19:06 preetkaran20

More information about data uri's: https://blog.teamtreehouse.com/using-data-uris-speed-website#:~:text=What%20Is%20a%20Data%20URI,and%20construct%20the%20original%20file.

preetkaran20 avatar Jun 05 '20 20:06 preetkaran20

Added one data uri encoding based attack in HtmltagBased injection.

preetkaran20 avatar Jun 07 '20 18:06 preetkaran20