LearnHacking.io
  • Home
  • About

PortSwigger's "DOM XSS in innerHTML sink using source location.search" Walkthrough

Dec 7, 2021 3 min read appsec
This is the second of the three Apprentice-level DOM-based XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This blog post shows how to solve the lab

PortSwigger's "DOM XSS in document.write sink using source location.search" Walkthrough

Dec 6, 2021 3 min read appsec
This is the first of the three Apprentice-level DOM-based XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This blog post shows how to solve the lab

PortSwigger's "Stored XSS into anchor href attribute with double quotes HTML-encoded" Walkthrough

Dec 5, 2021 3 min read appsec
This is the second of the two Apprentice level Stored XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This level is completed without Burp Suite, but

PortSwigger's "Stored XSS into HTML context with nothing encoded" Walkthrough

Dec 4, 2021 2 min read appsec
This is the first of the two Apprentice level Stored XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This level is completed without Burp Suite, but

PortSwigger's "Reflected XSS into a JavaScript string with angle brackets HTML encoded" Walkthrough

Dec 3, 2021 4 min read appsec
This is the third writeup of the Reflected XSS Labs from Portswigger. Before we get started, you’ll need a Portswigger Academy account. This level is completed without Burp Suite, but we have
Previous
Page 9 of 19
Next
LearnHacking.io © 2025
  • Sign up
Powered by Ghost