08 Lab: Stored XSS into anchor href attribute with double quotes HTML-encoded

This lab contains a stored cross-site scripting vulnerability in the comment functionality. To solve this lab, submit a comment that calls the alert function when the comment author name is clicked.

Ahora hay que hacer modificaciones

javascript:alert(1)

Previous07 Lab: Reflected XSS into attribute with angle brackets HTML-encoded Next09 Lab: Reflected XSS into a JavaScript string with angle brackets HTML encoded

Last updated 6 months ago