Backup_Repos/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2025-12-06 17:02:53 +01:00
Code Issues Projects Releases Wiki Activity

Merge pull request #701 from Vunnm/patch-1

Browse source 
specify condition to perform Angular JS Injection
This commit is contained in:
Swissky 2024-01-05 10:23:50 +01:00 committed by GitHub
commit f96c1e4356
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
XSS Injection/XSS in Angular.md
View file

@ -6,6 +6,8 @@ The following payloads are based on Client Side Template Injection.
### Stored/Reflected XSS - Simple alert in AngularJS ### Stored/Reflected XSS - Simple alert in AngularJS
`ng-app` directive must be present in a root element to allow the client-side injection (cf. [AngularJS: API: ngApp](https://docs.angularjs.org/api/ng/directive/ngApp)).
> AngularJS as of version 1.6 have removed the sandbox altogether > AngularJS as of version 1.6 have removed the sandbox altogether
AngularJS 1.6+ by [Mario Heiderich](https://twitter.com/cure53berlin) AngularJS 1.6+ by [Mario Heiderich](https://twitter.com/cure53berlin)