Comments on: XSS attacks a practical example http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/ Javascript blog with messed up syntax inside Thu, 26 Jan 2012 01:38:34 +0000 hourly 1 By: Gareth Heyes http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1769 Gareth Heyes Wed, 16 Jun 2010 18:34:07 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1769 @Nayan Hehe you could at least try something more recent :P @Nayan

Hehe you could at least try something more recent :P

]]> By: Nayan http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1768 Nayan Wed, 16 Jun 2010 18:31:42 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1768 Sorry, it's irresistable. :) <img src="alert('Hello'); /> Sorry, it’s irresistable. :)

<img src=”alert(‘Hello’); />

]]> By: jojo http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1662 jojo Tue, 15 Dec 2009 05:03:57 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1662 Why do you tell assa the IP address is she trying to take down the site? Why do you tell assa the IP address is she trying to take down the site?

]]> By: Gareth Heyes http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1519 Gareth Heyes Mon, 06 Apr 2009 08:11:09 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1519 @assa Hi your IP is 76.254.28.97 @assa

Hi your IP is 76.254.28.97

]]> By: assa http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1518 assa Mon, 06 Apr 2009 07:53:19 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1518 "><script>alert("hi")</script> “><script>alert(“hi”)</script>

]]> By: assa http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1517 assa Mon, 06 Apr 2009 07:53:01 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1517 <script>alert("hi")</script> <script>alert(“hi”)</script>

]]> By: Gareth Heyes http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1248 Gareth Heyes Wed, 18 Jun 2008 17:45:13 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1248 @lakye You need PHP and a web server, you can use IIS on windows or XAMPP [1] On the mac it comes built in with Apache and PHP but there's a nice app that lets you run it in the applications folder called MAMP [2] http://www.apachefriends.org/en/xampp.html [1] http://www.mamp.info/en/mamp.html [2] Once you have those installed the examples should work when you copy the files into the web document root. @lakye

You need PHP and a web server, you can use IIS on windows or XAMPP [1]
On the mac it comes built in with Apache and PHP but there’s a nice app that lets you run it in the applications folder called MAMP [2]

http://www.apachefriends.org/en/xampp.html [1]
http://www.mamp.info/en/mamp.html [2]

Once you have those installed the examples should work when you copy the files into the web document root.

]]> By: lakye http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1247 lakye Wed, 18 Jun 2008 17:00:12 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1247 may i ask.. how to make this document work? may i ask.. how to make this document work?

]]> By: fragge http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1183 fragge Wed, 19 Mar 2008 05:29:19 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1183 "<META HTTP-EQUIV=”Link” Content=”<http://ha.ckers.org/xss.css>; REL=stylesheet”>" LOL “<META HTTP-EQUIV=”Link” Content=”<http://ha.ckers.org/xss.css>; REL=stylesheet”>”

LOL

]]> By: Gareth Heyes http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1181 Gareth Heyes Tue, 18 Mar 2008 16:24:17 +0000 http://www.thespanner.co.uk/2007/10/01/xss-attacks-a-practical-example/#comment-1181 What's the point? sigh What’s the point? sigh

]]>