Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

IEFD Ep. 13 - Website Hacking - XSS part 2

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
35,682
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Dec 10, 2007

In this episode of Full Disclosure we are explaining the website attack known as Cross-Site Scripting (XSS). Cross-Site Scripting is a type of security vulnerability that affects web applications that do not sanitize user input properly. This kind of vulnerability allows an "attacker" to inject HTML or client side script like JavaScript into the website. Cross-Site Scripting is most commonly used to steal cookies. Cookies are used for authenticating, tracking, and maintaining specific information about users; therefore, by stealing a user's cookies an attacker could bypass the website's access control. There are three types of XSS attacks: Persistent, Non-Persistent, and DOM-Based. In this episode we will cover Persistent and Non-Persistent Cross-Site Scripting attacks.

Part 2 of 2

www.InfinityExists.com

Category:

Howto & Style

Tags:

License:

Standard YouTube License

  • likes, 4 dislikes

Link to this comment:

Share to:

Top Comments

  • 1337 video is 1337

    henrythesteinberg 4 years ago 9

  • you kick so much ass...

    wheeeee, i got bored and was playing with the alerts lol.

    NinjasKill112233 4 years ago 5

see all

Video Responses

see all

All Comments (31)

Sign In or Sign Up now to post a comment!

  • Please destroy this page, will pay for the lpg-diesel.pl

    kazio1620 3 weeks ago

  • So if you put the hex code after any website would it still capture the cookies?

    mrbushcraftman1 1 month ago

  • dude you guyz are awsome!

    Bilibilal 4 months ago in playlist More videos from Gregorpm

  • how can i upload shell by xss?

    marcosfaria2 4 months ago

  • what does it mean if a non persistent website accepts HTML but completely filters javascript.

    oliverxboxable 6 months ago

  • what is the password for the user account

    funnymoments007 8 months ago

  • This shit is so interesting

    Timthesniper555 8 months ago

  • anonymous

    PSYKOMANTISLEGEND 10 months ago

  • you fucking smart dude

    12hasim34 10 months ago

  • @NOJESSICA

    Of course it is they would have your ip

    ciaranst 11 months ago

Loading...
Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more