The Web Application Hacker’s Handbook Discovering and Exploiting Security Flaws

Download 5,76 Mb.

1 ... 704 705 706 707 708 709 710 711 ... 875

Bog'liq
3794 1008 4334

Modifying the Request Method

In complex applications that employ a large number of forms, it is common to

find several reflected XSS vulnerabilities within

POST

requests, where the vul-

nerable parameter is submitted within the body of an HTTP message. In these

cases, it is always worth verifying whether the application handles the request

in the same way if it is converted to a

GET

request. Most applications will tol-

erate requests in either form.

To perform this check, simply change the method of your crafted request

from

POST

GET

, move the message body into the URL query string (inserting

an additional

if a query string is already present), and remove the

Content-

Length

header. You can use the Change Request Method action in Burp Proxy

to perform these tasks for you.

Test the new request, and if your XSS payload is still executed, then you can

simply use the URL from the

GET

request as your attack vector. This makes fea-

sible a wider range of attack delivery mechanisms and, therefore, increases the

significance of the vulnerability in some contexts.

Download 5,76 Mb.

Do'stlaringiz bilan baham:

1 ... 704 705 706 707 708 709 710 711 ... 875