Such is the nature of things.
If memory serves me 1997 was my first
Is there a way to find out WHO the cross scripting is coming from? Like who/where are the hackers?
@HP First, all XSS attacks have an entry point. A piece of malicious code was initially posted to the site, which is classifiable as persistent XSS. In this case, the site owner should have the IP address of who posted it, or you can probably visibly see the username or profile name of the permission.
If the attack happens by user link click, whatever page the malicious URL is posted on, tell you a lot as well.
All these bits give additional information to uncover the identity of the attacker.
Post a Comment