XSS атаки
Этот ролик показывает об самомо распространённом и самом уязвимом типе атаки Dom Based XSS на примере скрипта коментариев. Всё хрень вот скрипт на HTML
function OnMessage(){
var str = ;
var pos_mem = (“mem=“) 4;
var pos_name = (“name=“) 5;
var pos_text = (“text“) 5;
= (pos_mem,) (pos_name, pos_text - 6) “ “ (pos_text,pos_mem-5);
= ;
}
Имя
Текст
1 week ago 01:16:32 16
2 weeks ago 00:37:12 24
3 weeks ago 01:28:13 49
4 weeks ago 00:45:59 26
1 month ago 00:23:55 32
1 month ago 01:00:12 24
1 month ago 00:23:49 1.1K
1 month ago 00:03:20 44
![[Начинающим] Простой эксплойт на языке программирования Ruby для уязвимости Cross-Site Scripting XSS. + Пошаговый разбор кода](https://sun9-79.userapi.com/impg/zzP8HaH3M9jctJOvh8N7xIUmKNohGqkDPTJvSg/HmBDgydxjn0.jpg?size=320x240&quality=95&keep_aspect_ratio=1&background=000000&sign=01a6ece116a6fb0038efe6e3eacf963a&c_uniq_tag=0G7PAq7uiKKkq9h4wJzkYbdEwpTeBRkXutFtxuU2Zb0&type=video_thumb)
1 month ago 00:49:00 17
2 months ago 00:09:15 6
![Как taint-анализ защищает код от атак? [SQL Injection] [Path traversal]](https://sun9-43.userapi.com/impg/vdqxRb7Y3mmXUm4g_RXBnmabPAQmurgINBDtgw/yg8INVGxTaQ.jpg?size=320x240&quality=95&keep_aspect_ratio=1&background=000000&sign=4434057340f69c9e5f206bcb5e5d089f&c_uniq_tag=ygjjfuVAqGEq4odHVkKkWN3JNURJbMcSrr3bPhjEVWU&type=video_thumb)
2 months ago 00:13:05 4
2 months ago 00:05:02 9
2 months ago 00:09:25 6
2 months ago 00:00:27 2
2 months ago 00:00:09 367
2 months ago 00:39:11 7
3 months ago 00:33:04 21
3 months ago 00:45:17 138
3 months ago 00:12:51 3.5K
3 months ago 00:06:50 68
4 months ago 00:08:59 12
4 months ago 00:05:40 43
4 months ago 00:05:45 124
4 months ago 00:10:15 1.5K
