Demo: Looking for a reflected XSS vulnerability in source code

Описание: XSS (cross-site scripting) happens whenever an attacker can execute malicious scripts on a victim’s browser. But what does that mean in terms of writing code?

Whenever you are learning how to find, exploit, or prevent different types of security vulnerabilities, you always want to understand it’s root causes and what actually happens to the application when the vulnerability is exploited.

Today, let’s talk about an extremely common vulnerability, XSS, it’s mechanisms, and how you can spot it in source code.

Register for your free account of ShiftLeft CORE: https://www.shiftleft.io/register

#shiftleft #xss #appsec