Quick Bugbounty Tip

Post Reply
john
Posts: 116
Joined: Wed Jun 13, 2018 9:36 am
Has thanked: 0
Been thanked: 1 time
Contact:

Quick Bugbounty Tip

Post by john » Sat Jun 30, 2018 7:06 pm

Testing a site setting X-FRAME-OPTIONS:DENY if you try to iframe because it detects the Referer: header and tries to prevent clickjacking. Using <iframe src="data:text/html,<iframe/src='ex.com '>"> iframes their site w/ no referrer :)



Post Reply

Who is online

Users browsing this forum: No registered users and 2 guests