Password Prank Javascript Injection
first things first, test it out.
in the url bar type the following
javascript:alert("hello")
"oh my god it said hello to me"
now try something like this
javascript:document.write("hello")
"oh my word a new page that says hello to me"
don't worry, this is going somewhere
now for some variables
javascript:void(a="hello); javascript:alert(a)
if your starting to understanding the concept you'll realize that somethings different. we set a variable to a and made it alert the value of a.
now heres where it gets more advanced.
go to a page with a login form like gmail.com and type this into the url bar
javascript:alert(document.forms[0].action)
the document function as you might have guessed documents something. as for the forms[0], your asking for the form (a type of html tag for those who dont know) and the number 0 (the first one on the page). and the action is where the form submits too.
now what were to happen if......
Join Now or Login to view the rest of this paper.
Approximate Word Count: 569
Approximate Pages: 3 (260 words per double-spaced page) |