Advanced Exploitation using XSS-SHELL

by kamalb
Sept. 10, 2017 1 comment www.securitylearn.net Management sameorigin shell xss

Before getting into XSS Shell, let us recollect few basics of XSS (Cross Site Scripting). XSS is one of the most common vulnerability that exists in many of the web applications today. XSS is a technique through which an attacker tries to compromise the web application by executing a malicious script. The attacker does this by breaking the Same-Origin policy of the web application. Same–Origin policy defines that the script which is coming from the foreign site or the script that doesn’t belongs to the same domain (i.e document.domain) should not be processed by the application.

http://www.securitylearn.net/2014/01/29/advanced-exploitation-using-xss-shell

Avatar
negrii_irina88 2 months, 3 weeks ago

quite interesting... XSS Shell has several features to gain whole access over victim

Reply