This video focuses on a common Bug Bounty and Capture The Flag question. Ok, you found an XSS – that's great, but so what? What's the impact?
XSS (Cross Site Scripting) vulnerabilities of all types are everywhere. During a typical penetration test, the gold standard XSS proof of concept is the fabled “alert(1)” dialogue pop-up box.
For somebody who technically understands what an XSS really means, the impact of this alert box is clear – an attacker can do just about anything they like in JavaScript to the affected user.
But what does “anything they like” in this XSS context actually mean?
🏆 The 247CTF channel is dedicated to teaching Capture The Flag fundamentals. If you want to improve your technical skills and succeed in Capture The Flag competitions, make sure to subscribe!
🏁 The 247CTF is a free Capture The Flag learning environment where you can improve your technical skills by solving challenges and recovering flags. You can join now for free at [ Ссылка ].
📺 Subscribe for more Capture The Flag videos!
🏆 Solve CTF Challenges ➝ [ Ссылка ]
🐦Stay up to date ➝ [ Ссылка ]
🥰 Support the 247CTF ➝ [ Ссылка ]
💬 Discuss and learn ➝ [ Ссылка ]
📌Free flag ➝ 247CTF{9719c5ddf317154473d334f47a77ac6a}
📝 Icons made by Freepik & Monkik from Flaticon.com
🚨 247CTF’s channel videos are intended for educational purposes only. Methods and techniques discussed are not to be used for illegal activities against unauthorised systems.
![](https://i.ytimg.com/vi/eYh7A6s9u14/maxresdefault.jpg)