How NON Persistent XSS Attacks can be controlled by Hackers?
Question
Say i have a following php code.
<?php
$name = $_GET['name'];
echo "Welcome $name<br>";
echo "<a href="http://xssattackexamples.com/">Click to Download</a>";
?>
Now the attacker will craft an URL as follows and send it to the victim:
index.php?name=guest<script>alert('attacked')</script>
This will just do an alert to the particular user only right ? there is no harm to other users right ?
And is there any similar kind of NON Persistent XSS attack that can change the coarse of website ?
No correct solution
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow