[Network Security] xss-labs level-11 problem-solving analysis

Enterprise 2023-08-06 13:43:49 views: null

Readers can refer to and subscribe to the column: Xss-Labs shooting range offensive and defensive combat

posture

Logical backend code:

insert image description here

The htmlspecialchars function converts special characters into their corresponding HTML entities, so str00 cannot be injected

It is found that str33 is an injection point, which is filtered by str11, and str11 is the referer request header

Therefore, POC can be constructed in the referer request header:

value type="test" onclick="alert(1)"

insert image description here

Summarize

The above is the detailed analysis of [Network Security] xss-labs level-11 problem solving, and the detailed analysis of [Network Security] xss-labs level-12 problem solving will be shared later.

I am Qiu said , see you next time.

Guess you like

Origin blog.csdn.net/2301_77485708/article/details/132095875

[Network Security] xss-labs level-11 problem-solving analysis

[Network Security] xss-labs level-9 problem-solving analysis

[Network Security] xss-labs level-6 problem-solving analysis

[Network Security] xss-labs level-16 problem-solving analysis

[Network Security] Detailed analysis of xss-labs level-5 problem solving

[Network Security] xss-labs level-4 problem solving detailed analysis

[Network Security] xss-labs level-12 problem solving detailed analysis

[Network Security] xss-labs level-3 detailed analysis of problem solving

[Network Security] xss-labs level-15 problem solving detailed analysis

[Network Security] Detailed analysis of xss-labs level-19 problem solving

[Network Security] Detailed analysis of xss-labs level-20 problem solving

[Network security] sqli-labs Less-17 problem-solving analysis

[Network Security] Sqli-labs Less-13 Problem-solving Analysis

[Network Security] Sqli-labs Less-12 Problem-solving Analysis

[Network security] sqli-labs Less-21 problem-solving analysis

[Network security] sqli-labs Less-23 problem-solving analysis

[Network Security] Detailed analysis of sqli-labs Less-11 problem solving

[Network Security] DVWA's Command Injection attack posture and problem-solving detailed analysis collection

[Network Security] DVWA's CSRF attack posture and problem-solving detailed analysis collection

[Network Security] DVWA's Insecure CAPTCHA attack posture and problem-solving detailed analysis collection

Network Security]sqli-labs Less-10 Detailed Analysis of Problem Solving

[Network Security] Detailed analysis of sqli-labs Less-18 problem solving

[Network Security] Upload-labs Pass-12 Detailed Analysis of Problem Solving

[Network Security] Upload-labs Pass-06 Detailed Analysis of Problem Solving

[Network Security] Upload-labs Pass-05 Detailed Analysis of Problem Solving

[Network security] upload-labs Pass-17 problem solving detailed analysis

[Network security] upload-labs Pass-15 detailed analysis of problem solving

[Network Security] Upload-labs Pass-14 Detailed Analysis of Problem Solving

[Network security] upload-labs Pass-13 detailed analysis of problem solving

[Network Security] upload-labs Pass-04 Detailed Analysis of Problem Solving

Recommended

Ranking

A quick primer on numpy basics

Two sister tease python project

Java | Multiple keywords in the replacement content are returned to the front end in red style

C ++: references

The string leetcood 1018 is a binary prefix divisible by 5

Flutter 布局组件

Java combat spingboot-redis

PMP pre-exam sprint and wrong questions sorting

ActiveMq C# Message Features: Delayed and Timed Message Delivery

DSP28377S_ copy a program from the RAM to FLASH portion DETAILS

Daily

2024-05-16(23)

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)