Nytro Posted February 2, 2014 Report Share Posted February 2, 2014 XSS and MySQL FILEDifficulty Beginner Details This exercise explains how you can use a Cross-Site Scripting vulnerability to get access to an administrator's cookies. Then how you can use his/her session to gain access to the administration to find a SQL injection and gain code execution using it. What you will learn?Cross-Site Scripting exploitation MySQL injection with FILE privilege RequirementsA computer with a virtualisation software A basic understanding of HTTP A basic understanding of PHP Yes, that's it! Downloadxss_and_mysql_file.pdf (579K) xss_and_mysql_file.iso (64-bit, 189M, MD5: e95459511a4aebb51d0de6cd04a016df) xss_and_mysql_file_i386.iso (32-bit, 178M, MD5: c9c7a31ab9bf79b82b72b58bb0a3a657) Sursa: https://pentesterlab.com/exercises/xss_and_mysql_file/ Quote Link to comment Share on other sites More sharing options...
Cr4nK_0x1e Posted February 6, 2014 Report Share Posted February 6, 2014 Interesant. C?utam ceva de genul! Quote Link to comment Share on other sites More sharing options...
