Posts Tagged ‘Attack’

JavaScript Injection (Form Editing)

January 7th, 2010 | Author:

JavaScript codes can be injected in the address bars of web browsers to edit online forms before submitting them, bellow I am posting an example for archiving purposes.

Assuming the page has a contact form, where submitted data is sent to an email address included in a hidden HTML input tag as in the following code:

<form name="ContactForm" action="submit.php" method="post">
<input type="hidden" name="Email" value="admin@website.com" /></form>

To change the email address to: myemail@hotmail.com, the following code can be injected:

Read the rest of this entry »

Posted in JavaScript | Tags: , | 1 Comment »

Javascript Injection (Cookie Editing)

January 7th, 2010 | Author:

Your browser’s address bar (URL bar) can be used to inject JavaScript code directly into the webpage you are visiting without reloading the page. The following codes are useful to do cookie editing:

First, visit the targeted webpage and inject the following code to view realted cookie’s fields and the values assigned to them.

javascript:alert(document.cookie);

Second, to edit a certain value use:
Read the rest of this entry »

Posted in JavaScript | Tags: , , | 3 Comments »
Haider’s WebSpace
Welcome to my technical blog. This is where I write, archive and share computer related articles. Subjects vary from posting technical solutions to researching particular topics. Feel free to comment and talk IT!
Sponsored Links
My Tweets
Posts Calendar
February 2012
M T W T F S S
« Nov    
 12345
6789101112
13141516171819
20212223242526
272829  

Contact | About me | Back to main site


Copyright © 2009 Haider's WebSpace. All Rights Reserved
My Blog is Proudly Powered by WordPress