<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>XSS Archives &#8212; LinuxSec Exploit</title>
	<atom:link href="https://exploit.linuxsec.org/category/xss/feed/" rel="self" type="application/rss+xml" />
	<link>https://exploit.linuxsec.org/category/xss/</link>
	<description>Nothing is Ever Locked</description>
	<lastBuildDate>Thu, 05 Mar 2020 16:20:13 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.4.3</generator>
	<item>
		<title>Memanfaatkan Bug XSS untuk Mencuri Cookie</title>
		<link>https://exploit.linuxsec.org/memanfaatkan-bug-xss-untuk-mencuri-cookie/</link>
					<comments>https://exploit.linuxsec.org/memanfaatkan-bug-xss-untuk-mencuri-cookie/#comments</comments>
		
		<dc:creator><![CDATA[Yoo Cherry]]></dc:creator>
		<pubDate>Mon, 02 Mar 2020 08:37:50 +0000</pubDate>
				<category><![CDATA[XSS]]></category>
		<guid isPermaLink="false">https://exploit.linuxsec.org/?p=3049</guid>

					<description><![CDATA[<p>Memanfaatkan Bug XSS untuk Mencuri Cookie. Kalian mungkin bertanya-tanya kenapa para bug hunter yang berhasil menemukan celah XSS selalu diberi hadiah besar. Kalian mungkin berpikir bahwa celah XSS hanyalah celah sepele yang tidak berdampak ke server secara langsung. Namun taukah kamu, jika bug ini bisa disalahgunakan untuk tidakan yang lebih parah, misalnya dimanfaatkan untuk mencuri [&#8230;]</p>
<p>The post <a href="https://exploit.linuxsec.org/memanfaatkan-bug-xss-untuk-mencuri-cookie/">Memanfaatkan Bug XSS untuk Mencuri Cookie</a> appeared first on <a href="https://exploit.linuxsec.org">LinuxSec Exploit</a>.</p>
]]></description>
		
					<wfw:commentRss>https://exploit.linuxsec.org/memanfaatkan-bug-xss-untuk-mencuri-cookie/feed/</wfw:commentRss>
			<slash:comments>1</slash:comments>
		
		
			</item>
		<item>
		<title>MIME Type Sniffing pada Form Upload Gambar</title>
		<link>https://exploit.linuxsec.org/mime-type-sniffing-pada-form-upload-gambar/</link>
					<comments>https://exploit.linuxsec.org/mime-type-sniffing-pada-form-upload-gambar/#comments</comments>
		
		<dc:creator><![CDATA[Yoo Cherry]]></dc:creator>
		<pubDate>Fri, 21 Jun 2019 10:20:29 +0000</pubDate>
				<category><![CDATA[Web Hacking]]></category>
		<category><![CDATA[XSS]]></category>
		<guid isPermaLink="false">https://exploit.linuxsec.org/?p=2694</guid>

					<description><![CDATA[<p>MIME Type Sniffing pada Form Upload Gambar. Oke kali ini saya akan membahas mengenai cara mengeksploitasi form upload pada sebuah web sehingga memunculkan XSS. Kita bisa memodifikasi request saat melakukan upload (mirip seperti tamper data), hanya saja nantinya yang kita modifikasi adalah mime type nya. Saya menemukan bug ini pada salahsatu marketplace besar di Indonesia. [&#8230;]</p>
<p>The post <a href="https://exploit.linuxsec.org/mime-type-sniffing-pada-form-upload-gambar/">MIME Type Sniffing pada Form Upload Gambar</a> appeared first on <a href="https://exploit.linuxsec.org">LinuxSec Exploit</a>.</p>
]]></description>
		
					<wfw:commentRss>https://exploit.linuxsec.org/mime-type-sniffing-pada-form-upload-gambar/feed/</wfw:commentRss>
			<slash:comments>10</slash:comments>
		
		
			</item>
		<item>
		<title>Cross-site Scripting Payloads Cheat Sheet</title>
		<link>https://exploit.linuxsec.org/xss-payloads-list/</link>
					<comments>https://exploit.linuxsec.org/xss-payloads-list/#comments</comments>
		
		<dc:creator><![CDATA[Yoo Cherry]]></dc:creator>
		<pubDate>Sun, 21 Jan 2018 15:02:10 +0000</pubDate>
				<category><![CDATA[Cheat Sheet]]></category>
		<category><![CDATA[XSS]]></category>
		<guid isPermaLink="false">https://exploit.linuxsec.org/?p=2335</guid>

					<description><![CDATA[<p>Cross-site Scripting Payloads Cheat Sheet &#8211; Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted web sites. XSS attacks occur when an attacker uses a web application to send malicious code, generally in the form of a browser side script, to a different end [&#8230;]</p>
<p>The post <a href="https://exploit.linuxsec.org/xss-payloads-list/">Cross-site Scripting Payloads Cheat Sheet</a> appeared first on <a href="https://exploit.linuxsec.org">LinuxSec Exploit</a>.</p>
]]></description>
		
					<wfw:commentRss>https://exploit.linuxsec.org/xss-payloads-list/feed/</wfw:commentRss>
			<slash:comments>73</slash:comments>
		
		
			</item>
	</channel>
</rss>
