GitBook: [master] one page modified
This commit is contained in:
parent
789afb4226
commit
c8d5002d7c
@ -514,6 +514,11 @@ requests.post(TARGET_URL + '/vulnerable', json = {
|
||||
requests.get(TARGET_URL)
|
||||
```
|
||||
|
||||
## Client-side prototype pollution to XSS
|
||||
|
||||
* [https://portswigger.net/web-security/cross-site-scripting/cheat-sheet\#prototype-pollution](https://portswigger.net/web-security/cross-site-scripting/cheat-sheet#prototype-pollution)
|
||||
* [https://github.com/BlackFan/client-side-prototype-pollution](https://github.com/BlackFan/client-side-prototype-pollution)
|
||||
|
||||
## What can I do to prevent?
|
||||
|
||||
* Freeze properties with Object.freeze \(Object.prototype\)
|
||||
|
Loading…
Reference in New Issue
Block a user