AJAX (Asynchronous JavaScript and XML) is a popular technique for creating interactive websites, by providing a concept for data exchange between client and server asynchronously.
Questions tagged [ajax]
124 questions
0
votes
0 answers
XSS via Ajax request?
I'm currently honing in on my web exploitation skills and came across this JavaScript function here:
Event.observe(window, 'load', function() {
new Ajax.Request('/dir/dir', {
method: 'post',
parameters:…
flowermia
- 101
0
votes
1 answer
How To Validate Secure Traffic from Chrome with Element To Matrix.org on Linux
Are you familiar with the Element chat system of https://app.element.io ? Are you familiar with its connections to Matrix.org (for a free account)? Is there a way that I can sniff this traffic on the OS when I hit the enter key on a message so that…
Volomike
- 275
- 2
- 8
0
votes
1 answer
How to prevent Cross-site Scripting in ajax response
I have a page(parent.php) from where i am calling a another page(result.php) through jquery ajax that is returning a response in html format. This response is showed on the parent.php page in a div. How can i secure my ajax response from xss attack.…
ujjawal
- 1
- 1
- 1
0
votes
1 answer
Is it possible to exfiltrate a router config file to server using csrf ajax?
the curl commend used to download the file
curl "http://192.168.1.1/html/management/downloadconfigfile.conf?RequestFile=/html/management/cfgfile.asp" -H "Cookie: SessionID_R3=dsadwdwqdasdwasdawd" --data "csrf_token=saddasdwadawds" --output…
MoooonX
- 15
- 4
0
votes
1 answer
Do URLs used in JavaScript AJAX GET calls need to be sanitized through Apache when there is no server side scripting or database involved?
I am aware that any data coming into a server from a client should be handled safely (as in sanitized, whitelisted, etc.) but I had slapped together a very simple system that pulled file contents getting the file name from the query string all on…
Xandor
- 103
- 3
0
votes
1 answer
XSS prevention when inserting HTML without user controlled data into the DOM?
I have some JavaScript that fetches some HTML from a PHP script, and inserts it into the DOM:
$.get("/includes/blocks.php",{
id:encodeURIComponent(id)
}).done(function(Data){
$('
'+Data.html+'
').appendTo('.main');
});…
Saly
- 3
- 2
0
votes
1 answer
Intercepting with Burp does not work - alternative ways
When doing bug bounty, there are some sites, which prohibit for good reasons to intercept the requests and responses (with SSL) to the site with Burp and other proxies. So I have the problem to get the content of the requests / responses especially…
devopsfun
- 201
- 2
- 4
0
votes
4 answers
Protecting from console attacks
I am creating a web-app using PHP and jQuery Ajax for my client-side. When I was testing some security stuff, I thought of inserting a malicious user account with admin access in the database by executing an Ajax call from the developer's console in…
Akio
- 3
- 2
0
votes
1 answer
How can I prevent requests from the browser console while still using ajax?
I have a publicly available API endpoint. I have to prevent a simple $.ajax script from downloading all of the exposed data within seconds and at least force a page refresh everytime a new request wants to be sent. While this wouldn't entirely…
patricio
- 1
- 1
0
votes
1 answer
HMAC API exposed through public site?
(I also asked this question over on StackOverflow.)
What steps can I take to prevent unauthorised access to a method on an unauthenticated controller?
Background
The diagram below illustrates a microsite we're implementing, and an HMAC API we're…
OutstandingBill
- 125
- 5
0
votes
1 answer
PCI Compliance : Capture Credit Card, make ajax call to save address, then post of Payment Provider
Say on the guest checkout page of an e-commerce website, if the user enters the delivery address, payment details (Credit card details) and clicks Submit button - and if
an ajax request is made to the hosted e-commerce website (to update the…
user1339772
- 103
- 2
0
votes
2 answers
Is storing a user's IP address, in their browser, a security concern?
I need to get the users IP address on the server. For technical reasons it's a lot easier for me to just pass it in from the client in the form of a query string.
So, on page load I would store their IP address in a JavaScript variable. Then when it…
dolphone bubleine
- 101
- 2
0
votes
1 answer
How to GET security answer values via AJAX for user edit
I have an issue where our app had an app scan issue. The application is using GET to retrieve info for a user profile page (written in HTML/Javascript). This page has the user's security questions and answers, but the answers are in plain text in…
JasonWilczak
- 103
- 3
0
votes
2 answers
exploiting CSRF in ajax request via XSS flaw
In an application i am testing, there is a stored XSS flaw. Now, I was testing for CSRF and I constructed an HTML page with a javascript that sends the ajax request (XHR). It caused a pre-flight request and then the browser says Cross-origin request…
entropy
- 362
- 3
- 10
0
votes
2 answers
What are the possible security issues when making a checkout system in Javascript?
I'm pretty new to JS and I am currently making a simple step-wise checkout system using purely JS and some Ajax and PHP. I have been wondering about the possible security issues that might pose with such a system.
The way it works is as…
nTuply
- 101