Web: https://systemweakness.com/reflected-xss-user-agent-2868ca1d5116?source=rss----f20a9840e177---4

March 17, 2023, 1:56 p.m. | Erdemstar

System Weakness - Medium systemweakness.com

Hello friends, today I will show you the steps of detecting a vulnerability that I encountered in Web Application Security Tests in my project named Saka Reflected XSS (User Agent) and exploiting this vulnerability.

What’s XSS

You can find detailed information about the XSS vulnerability in the article below.

Cross Site Scripting (XSS)

Running the Application


docker pull erdemstar/saka:reflected-xss-tag-attribute-src
docker run --rm -d -p 80:80 erdemstar/saka:reflected-xss-tag-attribute-src

Visual Studio 2019 IDE

git clone https://github.com/ErdemStar/Saka
cd reflected-xss-tag-attribute-src
- mouse click on …

agent appsec cybersecurity infosec pentest reflected xss saka xss

Associate Cybersecurity Analyst - SOC

@ Visa | Ashburn, VA, United States

Security Operations Networks Engineer - Hybrid Working

@ NECSWS | Nottingham, United Kingdom

Senior Application Security Engineer

@ Netcompany-Intrasoft | Athens, Greece

Lead SQA Network and Firewall Test Engineers

@ Axiado | Hyderabad, India

DevSecOps Engineer - (80-100%) (w|m|d) - Germany, Berlin - Hybrid Work

@ SMG Swiss Marketplace Group | Berlin, Germany

Application Security Expert Tech Lead

@ JFrog | Tel-Aviv

Enterprise Security, Risk and Compliance Co-Op

@ Locus Robotics | Wilmington, MA, United States

GRC Analyst

@ Aura | Boston, Massachusetts, United States

Product Owner PKI

@ Lely | Maassluis, Netherlands

IT Compliance and Data Security Director - US/Remote

@ Taptap Send | Atlanta, US

Security Architect

@ ADGA Group Consultants Inc | Ottawa, ON, Canada

Senior Manager, Application Security & Engineering

@ PEAK6 | Dallas, TX