The Age of Universal XSS




In August 1996, Internet Explorer joined the JavaScript security scene after they added JScript. During this era from around 1996-2000, tons of bugs were found what we would call today "Universal Cross-site Scripting". I find this word confusing, but looking back at the history, we can try to make sense of it. Jabadoo Security Hole in Explorer 4.0: https://ift.tt/v2rW8BD Aleph One on Jabadoo: https://ift.tt/eWV0bCZ Georgi Guninski "IE can read local files": https://ift.tt/Rhs4yCm Georgi's Resume (HIRE HIM!): https://ift.tt/mfZ7BFY "Cross-frame security policy": https://ift.tt/J2a3igk Episode 01 - First JS Bug: https://www.youtube.com/watch?v=bSJm8-zJTzQ Episode 02 - Three JS Security Researcher: https://www.youtube.com/watch?v=VtcA58555lY Episode 03: 00:00 - Intro to the "Age of Universal XSS" 01:16 - JavaScript Security in Netscape 1996 01:52 - JScript Vulnerability in Internet Explorer 03:38 - Georgi Guninski: IE can read local files (1998) 05:12 - Who is Georgi Guninski? 06:36 - Georgi Guninski: IE 5 circumventing cross-frame security policy 09:41 - David Ross from Microsoft about Georgi 10:16 - "Cross-Frame" Browser Bugs 11:17 - Universal Cross-Site Scripting 12:15 - Outro -=[ ❤️ Support ]=- → per Video: https://ift.tt/Vv9woUd → per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join -=[ 🐕 Social ]=- → Twitter: https://twitter.com/LiveOverflow/ → Instagram: https://ift.tt/H2MgoG6 → Blog: https://ift.tt/yY0MWAE → Subreddit: https://ift.tt/87vg1Lh → Facebook: https://ift.tt/hts7D2B

Hello and welcome to the temple of cybersecurity. Now you are watching The Age of Universal XSS published at September 23, 2022 at 11:41AM.
For more hacking info and free hacking tutorials visit: https://ift.tt/kNho0Rb
follow us on:

Youtube: https://www.youtube.com/channel/UCiu1SUqoBRbnClQ5Zh9-0hQ/
Whatsapp: https://ift.tt/CSItAad
Reddit: https://ift.tt/fizhdT7
Telegram: https://ift.tt/IsYyMu8
NFT store: https://mintable.app/u/cha0smagick
Twitter: https://twitter.com/freakbizarro
Facebook: https://web.facebook.com/sectempleblogspotcom/
Discord: https://discord.gg/wKuknQA



Ignore tags:
#hacking,#infosec,#tutorial,#bugbounty,#threat,#hunting,#pentest,#hacked,#ethical,#hacker,#cyber,#learn,#security,#computer,#pc,#news

Comments