HTML Injection — Reflected (URL)-bWAPP
URLs redirection form the main URL is one type of vulnerability that can make easy towards attacker.
Requirement :burp suite and bWAPP on local server or you can use it on virtual box.
Securtiy level: low
The main target is to achieve our reflected url, so lets start.
Step 1: Open http://localhost/bWAPP/bWAPP/htmli_current_url.php
Step 2: open Burpsuite →”intercept on” at proxy server.
Step 3: You can get a Raw details on burp lets change its localhost by another address.
like localhost : 257.90.90.9
nd forward it.
open bWAPP →browser
congrats you have done your cureent url link has been changed
Security level : Medium
Step 4: You can hange URl in url directly like
http://localhost/bWAPP/bWAPP/htmli_current_url.php/<script>document.write(document.URL)</script>
Thanks for grabbing Knowlwdge.
For Previous tutorials: click here
