This content originally appeared on DEV Community and was authored by Peppa
Detail
Giống lv1 nhưng website đã sử dụng EJS (Embedded Javascript template) disable các html tags
Ta phát hiện trước khi login, website có 1 parameter là return_url nhằm mục đích ghi nhớ đường dẫn và sau khi login thành công thì sẽ redirect sang endpoint đó
- Ta thử thay thế thành link google.com, ta thấy sau khi nhập email thì website sẽ redirect sang google.com
- Vậy điều cần làm bây giờ là tìm cách nào đó chạy được js thông qua url, ta có thể sử dụng
javascrip:
This content originally appeared on DEV Community and was authored by Peppa
Print
Share
Comment
Cite
Upload
Translate
Updates
There are no updates yet.
Click the Upload button above to add an update.
APA
MLA
Peppa | Sciencx (2024-09-19T09:15:27+00:00) CBJS: Html Injection 5. Retrieved from https://www.scien.cx/2024/09/19/cbjs-html-injection-5/
" » CBJS: Html Injection 5." Peppa | Sciencx - Thursday September 19, 2024, https://www.scien.cx/2024/09/19/cbjs-html-injection-5/
HARVARDPeppa | Sciencx Thursday September 19, 2024 » CBJS: Html Injection 5., viewed ,<https://www.scien.cx/2024/09/19/cbjs-html-injection-5/>
VANCOUVERPeppa | Sciencx - » CBJS: Html Injection 5. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2024/09/19/cbjs-html-injection-5/
CHICAGO" » CBJS: Html Injection 5." Peppa | Sciencx - Accessed . https://www.scien.cx/2024/09/19/cbjs-html-injection-5/
IEEE" » CBJS: Html Injection 5." Peppa | Sciencx [Online]. Available: https://www.scien.cx/2024/09/19/cbjs-html-injection-5/. [Accessed: ]
rf:citation » CBJS: Html Injection 5 | Peppa | Sciencx | https://www.scien.cx/2024/09/19/cbjs-html-injection-5/ |
Please log in to upload a file.
There are no updates yet.
Click the Upload button above to add an update.