This is the second portswigger lab that takes a look at potential vulnerabilities in the way that web messages are handled. The end result here is a DOM based cross site scripting vulnerability.
00:00 Introduction
00:25 Exploring the Lab
01:37 indexOf Method
03:54 Javascript Colon
04:52 Bypassing Verification
05:38 Crafting the Payload
Ещё видео!