• 全部
  • 关注
  • 有问必答
  • 等你来答

排行榜

  • 用户榜
  • 标签榜
  • 冲榜分奖金

频道

  • 编程语言
  • 后端
  • Python
  • Java
  • 前端
最新最热精华悬赏待回答 筛选
  • 1

我这边有一个网站,登录的时候会把 请求头的x-forwarded-for 的用户IP记录下来,然后在 登录后 在菜单栏选择 “操作记录” 功能页面 可以看到登录ip和操作信息。 现在发现一个漏洞就是

moon2lyna
采纳率100%
  • 1

出现这个是什么原因啊,第一次安装,搞了好多次,都是在搭建完DVWA和sql之后为了搭建xss后而安装的phpmyadmin,没想到按照网上的教程配置后却打不开这个网页,大神们我该咋么配置啊,求指点

aaaxinxin_
采纳率100%
  • 1

    回答

同页面中设置两个button,点击一个button在同页面下出现设置好的界面。 两个button是不同的界面。 点击另外一个button的时候,先前的一个button出现的界面消失。 求大佬教教

回答 欧小云
采纳率50%
  • 1

测试站内短信xss不要移动到这里测试站内短信xss不要移动到这里测试站内短信xss不要移动到这里

  • 1

    回答

今天遇到了一个问题,有一个网站,它的聊天窗口只能使用或发送表情,问,是否存在XSS漏洞。请大家为我解惑。感激不尽!

回答 gust0115
采纳率0%
  • 2

    回答

按照帖子获取了cookie值,但是改了cookie值也登不上去,没有反应

回答 qq_47792866
采纳率0%
  • 2

    回答

新建窗口输入 http://127.0.0.1/dvwa/php.ini输出 返回dvwa文件包含漏洞出输入url:127.0.0.1/DVWA/vulnerabilities/fi/?page

  • 0

    回答

So I was doing(trying) some hacking work and got interested in xss echo $_GET['cmd']; Lets as

  • 1

    回答

I have a question about XSS: As I read html entity supposed to prevent XSS, but reading from t

  • 1

    回答

Hello I have been creating a sort function for a bunch of divs. For it to wo

回答 larry*wei
采纳率0%
  • 1

Maybe it's an weird question but I'll try to explain it as good I can. Currently I'm pentesting

  • 2

    回答

I am just trying to exercise on xss and I want the alert box to pop up on echo which should work

  • 0

    回答

I am using Latest Web server(Any) which are by default enabled with X-XSS-Pr

  • 1

I am new to Codeception and I am researching using it to run our integration / acceptance test s

  • 1

I'm am building an app for a local online newspaper company. They have an existing website whic

  • 1

    回答

I have a registration form with hidden token input. There is also username f

  • 3

    回答

在我们的应用程序中有一个XSS过滤器,该过滤器可以处理每个请求并检查值。但是我们发现了一种情况,即我们的过滤器在请求是Ajax时不起作用。 像这样

  • 0

    回答

我刚刚收到一份安全报告,指出XSS漏洞指向一个JSONP调用,该调用可以在JSONP id上被利用: http://<domain>

回答 George_Fal
采纳率0%
  • 3

I have the following php code: <?php $redirect_lp = $_GET['lp']; ?> <script> se

  • 2

    回答

What's the best way to prevent XSS attacks in an angularjs app? I've used $s

回答 ?yb?
采纳率100%
  • 1

    回答

I have a script that pulls a text from an API and sets that as a tooltip in my html. <div cl

  • 4

    回答

I'm creating an app that retrieves the text within a tweet, store it in the database and then di

  • 0

    回答

in my security course, we were told to practice an xss attack using firefox on this website; ht

  • 1

My question is about PHP security for this particular operation: I want to use javascript to pu

  • 0

    回答

I have a php function that does this to escape HTML tags using wordpress's esc_attr function but

  • 1

    回答

I've been reading all day about securing my output from xss. At the moment I am using : htmlsp

  • 1

    回答

I have a php ajax site and found that there is a possibility of XSS in the a

回答 游.程
采纳率33.3%
  • 1

I've web-project, where I allow users to use CKEditor, and thats why I need to secure me from an

  • 3

There is a web page that has a <textarea>. You can type any text into that <textarea&

  • 1

    回答

I'm using Symfony2 / Twig / Doctrine. I'm looking at security on my site and in particular prev