Unsanitized Data – An XSS Case Study                                 Chapter 4









































            And voila! We can see the presence of our grep phrase, meaning that our submissions have
            been a success, for several of the tag/attribute combinations generated by the XSS Validator
            submissions.



            XSS ` An End-To-End Example


            Throughout this book, we look at bugs on deliberately-vulnerable teaching sites as well as
            live applications belonging to real companies d that way, we can see vulnerabilities as they
            exist in the wild while also having sections where you can follow along at home.










                                                    [ 65 ]