add pictures
This commit is contained in:
parent
73881dc6ca
commit
b551cddaa2
4 changed files with 3 additions and 3 deletions
|
@ -11,7 +11,7 @@ docker run --pull always -p 127.0.0.1:80:3000 bkimminich/juice-shop
|
||||||
|
|
||||||
Result:
|
Result:
|
||||||
|
|
||||||
<!--- ToDo: Insert Picture -->
|
![](login_admin.png)
|
||||||
|
|
||||||
### Login as Jim
|
### Login as Jim
|
||||||
1. Open `Account` => `Login`
|
1. Open `Account` => `Login`
|
||||||
|
@ -19,13 +19,13 @@ Result:
|
||||||
|
|
||||||
Result:
|
Result:
|
||||||
|
|
||||||
<!--- ToDo: Insert Picture -->
|
![](login_jim.png)
|
||||||
|
|
||||||
## Cross Site Scripting
|
## Cross Site Scripting
|
||||||
1. Open up the Search Box
|
1. Open up the Search Box
|
||||||
2. Type `<iframe src="javascript:alert('hello')">`
|
2. Type `<iframe src="javascript:alert('hello')">`
|
||||||
|
|
||||||
<!--- ToDo: Insert Picture -->
|
![](cross_site_scripting.png)
|
||||||
|
|
||||||
## Forged Picture
|
## Forged Picture
|
||||||
This challenge is impossible due to the `/profile` page only reading the username from POST variables.
|
This challenge is impossible due to the `/profile` page only reading the username from POST variables.
|
||||||
|
|
BIN
Lab03 - Let's Buy Some Juice/cross_site_scripting.png
Normal file
BIN
Lab03 - Let's Buy Some Juice/cross_site_scripting.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 363 KiB |
BIN
Lab03 - Let's Buy Some Juice/login_admin.png
Normal file
BIN
Lab03 - Let's Buy Some Juice/login_admin.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 413 KiB |
BIN
Lab03 - Let's Buy Some Juice/login_jim.png
Normal file
BIN
Lab03 - Let's Buy Some Juice/login_jim.png
Normal file
Binary file not shown.
After Width: | Height: | Size: 402 KiB |
Loading…
Reference in a new issue