Web: https://systemweakness.com/reflected-xss-tag-attribute-href-8e41eae9fb49?source=rss----f20a9840e177---4

March 16, 2023, 8:19 p.m. | Erdemstar

System Weakness - Medium systemweakness.com

Hello friends, today I will show you the steps of detecting a vulnerability that I encountered in Web Application Security Tests in my project named Saka Reflected XSS (Tag Attribute href) and exploiting this vulnerability.

What’s XSS

You can find detailed information about the XSS vulnerability in the article below.

Cross Site Scripting (XSS)

Running the Application


docker pull erdemstar/saka:reflected-xss-tag-attribute-href
docker run --rm -d -p 80:80 erdemstar/saka:reflected-xss-tag-attribute-href

Visual Studio 2019 IDE

git clone https://github.com/ErdemStar/Saka
cd reflected-xss-tag-attribute-href
- mouse click …

appsec pentest reflected xss saka security tag xss

Snr Security Engineer (cloud)

@ Verisk | Málaga, Spain

Cybersecurity Analyst

@ Visa | Bengaluru, India

Information Security Engineer

@ ServiceNow | Orlando, FL, United States

Director of Cloud Security - 100% US REMOTE

@ Experian | Allen, TX, United States

Azure DevSecOps - Solution Architect

@ Citizant | Chantilly, VA, United States

Cybersecurity Champion

@ NielsenIQ | Chicago, IL, United States

Senior Information Security Analyst

@ QAD, Inc. | Wroclaw, Poland

VP, Information Security

@ TrueAccord | Remote

DevSecOps Engineer- (100%) ( w/m/d) - Valbonne - Hybrid Work

@ SMG Swiss Marketplace Group | Valbonne, France

Information Security Director - Attack Surface Management (100% US REMOTE)

@ Experian | Allen, TX, United States

Director - Cybersecurity and Compliance

@ Visa | Foster City, CA, United States

Senior Threat Analyst | Remote, USA

@ Optiv | Kansas City, MO