
Notice the search function and perform a DOM Based XSS or “Client Side XSS” attack to see if it is vulnerable.
First, we perform a standard search.
Copy to Clipboard
From our standard search, we notice that the search query parameter (query string) is:
q=
Let’s craft our Client Side XSS attack using the search query parameter and the JavaScript code included from the Score Board page.
Copy to Clipboard

Latest posts by Jesse Shelley (see all)
- Symmetric Encryption –Bidirectional Python Socket - April 27, 2022
- Python Socket Programming – Simple Bidirectional Communication - April 27, 2022
- Python wpnuker a collection of WordPress Pentesting Tools - April 19, 2022
Leave A Comment