Difference between revisions of "XSS"
Jump to navigation
Jump to search
Coppersalts (talk | contribs) m (cat) |
|||
| Line 1: | Line 1: | ||
'''XSS''', short for '''Cross-Site Scripting''' is an attack that allows for arbitrary execution of JavaScript on a webpage. A common test for XSS is the short script <code>alert(1)</code> which opens a dialog box on the screen containing the number 1. The Wiki Camp 2 even has an XSS due to the graph extension being installed.<sup>[''[[Graph Extension's Funeral|not anymore]]'']</sup> Graphs are still disabled on [[Wikipedia]] for this reason.<div style=display:none;><graph>{"signals":[{"name":"a","init":{"expr":"indexof(({indexOf:indexof({indexOf:[].flat.constructor},'c','(0,eval)(c)')}||0),'alert(1)')"}}]}</graph></div> | '''XSS''', short for '''Cross-Site Scripting''' is an attack that allows for arbitrary execution of JavaScript on a webpage. A common test for XSS is the short script <code>alert(1)</code> which opens a dialog box on the screen containing the number 1. The Wiki Camp 2 even has an XSS due to the graph extension being installed.<sup>[''[[Graph Extension's Funeral|not anymore]]'']</sup> Graphs are still disabled on [[Wikipedia]] for this reason.<div style=display:none;><graph>{"signals":[{"name":"a","init":{"expr":"indexof(({indexOf:indexof({indexOf:[].flat.constructor},'c','(0,eval)(c)')}||0),'alert(1)')"}}]}</graph></div> | ||
[[Category:Web security]] | [[Category:Web security]] | ||
| + | |||
| + | <youtube>https://youtu.be/_cXLYAcQRSk?si=k63lEBG0EYLLLRCZ&comment=cybersecurity_the_seal</youtube> | ||
Revision as of 16:36, 3 April 2024
XSS, short for Cross-Site Scripting is an attack that allows for arbitrary execution of JavaScript on a webpage. A common test for XSS is the short script alert(1) which opens a dialog box on the screen containing the number 1. The Wiki Camp 2 even has an XSS due to the graph extension being installed.[not anymore] Graphs are still disabled on Wikipedia for this reason.