Commit graph

7 commits

Author SHA1 Message Date
khiemtq-cyber
507c493db2 Update Angular XSS 2022-05-07 12:55:15 +07:00
ktq-cyber
5d898e004f [update] Angular XSS payload 2022-02-23 22:26:16 +07:00
Viren Pawar
0266a7dd67
[Update] Added 1 payload
Added one payload which executes without any usage of single or double quotes. Helpful when you have AngularJS injection but quotes are blocked by application.
Working proof of payload here: 

https://portswigger-labs.net/xss/angularjs.php?type=reflected&csp=0&version=1.6.0&x={{x=valueOf.name.constructor.fromCharCode;constructor.constructor(x(97,108,101,114,116,40,49,41))()}}
2020-08-15 16:29:13 +05:30
Kyle Martin
e95b0c34a3 clarify AngularJS vs Angular 2019-12-07 10:54:47 +13:00
marcan2020
920da73bd7
Add Angular automatic sanitization 2019-10-02 21:24:53 -04:00
Lewis
dab064a583
adding reference to blog 2019-07-12 12:49:02 -07:00
Swissky
404afd1d71 Fix name's capitalization 2019-03-07 00:07:55 +01:00
Renamed from FIX_XSS Injection/XSS in Angular.md (Browse further)