Blog Details

Posted in: Blog, Posted On: Jun 06, 2017, Posted By: cyberinfoadmin

Cross Site Scripting (XSS) in IIT Madras website

XSS: Cross Site Scripting also known as XSS, is one of the most common web application vulnerabilities that allows an attacker to run their own client-side scripts (especially JavaScript) into webpages viewed by other users. In a typical XSS attack, a hacker injects their malicious JavaScript code in the legitimate website. When a user visits the specially-crafted link, it will execute the malicious JavaScript. A successfully exploited XSS vulnerability will allow attackers to do phishing attacks, steal accounts and even worms.

Here it was found in www.iitm.ac.in website


POC