Web - Client
Tuesday 5 June 2018, 07:30 #1
Web - Client | XSS Stored - 1
Hey,
I was able to get the cookies of the admin by an cookie steal attack which required me to write some script in the form of the question.
But when I set that cookie on my browser and refresh the page the same page gets opened. To set the cookie i used "javascript:void(document.cookies"#cookie_name=#cookievalue");".
When I check my cookies for the session they were perfect.
Is there anything else that is to be done?
Am I missing something?
What more should I learn?
It would be great if you would hint me with a keyword or so.
Thanks in advance.