DOM XSS using Web Messages and a JavaScript URL
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Model Javascript - T1059.007 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 500c86cd-c160-4ca5-a806-e239bde80077
Fingerprint a0033215243f39b5
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 23, 2024, 2:15 p.m.
Added to db Sept. 23, 2024, 4:31 p.m.
Last updated Sept. 23, 2024, 4:31 p.m.
Headline DOM XSS using Web Messages and a JavaScript URL
Title DOM XSS using Web Messages and a JavaScript URL
Detected Hints/Tags/Attributes 25/2/6
Source URLs
Redirection Url
Details Source https://medium.com/@rcxsecurity/dom-xss-using-web-messages-and-a-javascript-url-dcced7fa4195?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
lab-subdomain.web-security-academy.net
Details Domain 1 
0aac00be043c466681d7c5c800bb006e.web-security-academy.net
Details File 9 
e.dat
Details md5 1 
0aac00be043c466681d7c5c800bb006e
Details Url 1 
https://lab-subdomain.web-security-academy.net
Details Url 1 
https://0aac00be043c466681d7c5c800bb006e.web-security-academy.net