serhii.net LINKS BLOG!

In the middle of the desert you can say anything you want

22 Dec 2016

Persistent XSS In Verizon

Categories:
  • Infosec/Web security
    • (show all) All categories:
  • Infosec
  • Infosec/Web security

    • Tags:
  • Xss
  • Infosec
  • Case
  • Js
  • Vuln

    • Rating: 7; Complexity: 6
    Title: Persistent XSS In Verizon
    Link: https://randywestergren.com/persistent-xss-verizons-webmail-client/

    Interesting scenario with generation of all possible HTMLs ( <footer onafterprint=“console.log(244599)” onbeforeprint=“console.log(309354)"[…] ), onwheel/oninput resulting in xss and clickjacking.

    Nel mezzo del deserto posso dire tutto quello che voglio.