2016年9月21日
XSS for domain takeover
摘要: TLDR C'mon, show me the XSS domain takeover 5 mins later… So how did you take over the domain? So is this bad? 阅读全文
posted @ 2016-09-21 23:34 独裁者 阅读(282) 评论(0) 推荐(0) 编辑
XSS via XML POST
摘要: I was bug hunting on a site which looked like this: POST /snip/snippet.php HTTP/1.1 <?xml version="1.0"?> I tested in BURP for XSS in XML, and it work 阅读全文
posted @ 2016-09-21 22:44 独裁者 阅读(373) 评论(0) 推荐(0) 编辑