The return of XSS

We've already covered XSS in Chapter 3, Cross-Site Scripting (XSS), but here, we'll have a few more techniques related to XSS in the form of malicious file uploads. There are different file formats, which when allowed, can execute arbitrary JavaScript. Let's go through some of them.

SWF – the flash

There are certain cases when .swf files are allowed to upload. In this case, we can craft an ActionScript code to execute JS, compile it, and then upload it on the vulnerable website to achieve XSS capability.

The following is an ActionScript2 (AS2) code which uses the getURL() function to execute JS when run in a browser with Adobe Flash Player:

class XSS {
    static var app: XSS;
    function XSS() {
 var xss = "javascript:alert(\"SWF-based ...

Get Mastering Modern Web Penetration Testing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Mastering Modern Web Penetration Testing by Prakhar Prasad

The return of XSS

SWF – the flash

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly