current position:Home>Web Security: analysis of DOM XSS vulnerability source code of jquery
Web Security: analysis of DOM XSS vulnerability source code of jquery
2022-04-29 19:57:37【Midnight safety】
1. Preface
jQuery stay Web Widely used in , When jQuery The version of is greater than or equal to 1.2 And less than 3.5.0 When , Even if disinfection is carried out (sanitize) Handle , And will still execute... That will come from untrusted sources HTML Pass to jQuery Of DOM Operation method ( namely html()、.append() etc. ), Which leads to xss Loophole .
2. Loophole recurrence
Use the environment built by the original author :
This environment has three built-in xss poc, Click on Append via .html() The button triggers XSS Loophole .
When we want to test something jquery Whether there are loopholes , Can be URL Replace with the subscript red , Then open the browser html.
HTML Source code :<
copyright notice
author[Midnight safety],Please bring the original link to reprint, thank you.
https://en.qdmana.com/2022/119/202204291810249738.html
The sidebar is recommended
- Who is bunk, the new hero of endless dungeon? Introduction to new hero bunk skills
- Front end entry first bullet | development tools and configuration
- Nice HTML login page
- Vue error prone summary
- Summary of material resources website (icon | wallpaper | Adobe plug-in | jQuery plug-in | badge | online conversion | color splicing | continuous update)
- Step by step, configure nodesjs environment with hbuilder for Vue JS development
- Vue sets the global websocket and accepts message notification processing on the corresponding page
- Solve the problem that vuex data is reset during page refresh
- Java data structures and algorithms lesson 2 - generics
- Leetcode-82 - delete duplicate Element II in the sorting linked list
guess what you like
[front end] quickly create HTML
Vue router routing navigation
Vue router redirection and alias
Vue router named routes, (nested) named views
Dynamic components & slots & custom instructions for getting started with Vue Foundation
JavaScript algorithm -- heap sorting
K8s deployment-43-take you to learn ingress nginx (Part 2)
Detailed breakdown of actual combat of CMS background system project (VII)
Explore the store | new architecture blessing, performance and safety. This style is super personality_ Integra_ Honda_ platform
Sports kit blessing / replacement of four cylinder engine Chevrolet chuangku RS live shooting analysis_ Aspect_ Display screen_ Complete vehicle
Random recommended
- Talking about nodejs server
- Node. js&lt; I & gt—— Encounter node and repl usage
- Vue basic API: calculation attribute + filter + listener
- 1-stm32 + mn316 (nb-iot) remote upgrade OTA (self built Internet of things platform) - STM32 uses HTTP to download program files and upgrade programs through mn316 (MCU program rotation check and update)
- Vue Axios response interception
- vue3 ref
- How does Vue transfer the data from the parent component to the child component intact?
- The back-end interface developed by springboot in idea and the Vue front-end developed by vscode. How to integrate Vue code into springboot?
- Fried cold rice series 4: scope and closure in JavaScript
- Typescript type compatibility learning
- Summary of bugs encountered in front-end development
- Chrome developer tool: performance analysis using web panel
- Collation of common semantic elements and global attributes in HTML
- Life cycle in Vue
- 5.1 fear of traffic jam? With a budget of less than 100000, these cars with adaptive cruise make it easy for you to travel
- Docker compose deploy nginx configure SSL
- The content of element type “mapper“ must match “(cache-ref|cache|resultMap*|parameterMap*|sql*|inse
- -CSS-
- Vue uses two-way binding to implement the user registration page
- Is Infiniti qx60 worth less than 400000 yuan? It depends on the discount
- "Element Fangjian: first heart version" public beta welfare release, go to the great God app to receive red envelopes and prizes
- What is the role of webpack cli in webpack packaging
- Vue3 configuration method using Axios
- How to configure Google reverse proxy on nginx server
- Volume comparison between Vue and react
- What are the three ways to define components in react
- How to install and configure the blogging program Typecho on the nginx server
- How to configure load balancing for TCP in nginx server
- How to configure nginx server under Windows system
- How to configure AB to do stress testing for nginx server
- Analysis of location configuration in nginx server
- How to integrate Linux and redmine into the redmine system
- How to build the production environment of nginx + PHP with PHP FPM
- How to optimize the performance of nginx supporting SSL
- How to configure nginx server to prevent flood attack
- [Axios learning] basic use of Axios
- [Axios learning] Axios request mode, concurrent request, global configuration, instance and interceptor
- Use the virtual queue implemented by list to view the first element of the queue in Python without taking it out
- This dependency was not found and to install it, you can run: NPM install score JS
- Front end serial communication