Merge pull request #491 from Ooggle/patch-1

Add XSS document blacklist bypass
2024-06-30 19:02:55 +00:00 · 2022-04-18 20:59:20 +02:00 · 2022-04-18 20:59:20 +02:00 · 629f6d6cef
commit 629f6d6cef
parent 4ea77223bb 39d1c6e7d8
1 changed files with 1 additions and 0 deletions
--- a/Injection/README.md
+++ b/Injection/README.md
@ -725,6 +725,7 @@ $ echo "<svg^Lonload^L=^Lalert(1)^L>" | xxd

 ```javascript
 <div id = "x"></div><script>alert(x.parentNode.parentNode.parentNode.location)</script>
+window["doc"+"ument"]
 ```

 ### Bypass using javascript inside a string