Unsanitized Data – An XSS Case Study                                 Chapter 4






























            We need to make one more setting change before we can start our attack. If you head over
            to the xssValidator tab, you'll see a random string generated in the Grep Phrase field, and
            you might also spot the bullet point explaining that Successful attacks will be denoted by
            the presence of the Grep Phrase:































                                                    [ 63 ]