Lab - Reflected XSS with some SVG markup allowed

This writeup delves into the 16th XSS lab in port swigger.

Feb 4, 2026 Vulnerabilities, WebExploitation

Lab - Reflected XSS into HTML context with all tags blocked except custom ones

This writeup delves into the 15th XSS lab in port swigger.

Jan 22, 2026 Vulnerabilities, WebExploitation

Stored DOM XSS

This writeup delves into the 13th XSS lab in port swigger.

Jan 20, 2026 Vulnerabilities, WebExploitation

Reflected XSS into HTML context with most tags and attributes blocked

This writeup delves into the 14th XSS lab in port swigger.

Jan 20, 2026 Vulnerabilities, WebExploitation

Stored XSS into anchor href attribute with double quotes HTML-encoded

This writeup delves into the 8th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

Reflected XSS into attribute with angle brackets HTML-encoded

This writeup delves into the seventh XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

Reflected XSS into a JavaScript string with angle brackets HTML encoded

This writeup delves into the 9th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

Reflected DOM XSS

This writeup delves into the 12th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

DOM XSS in jQuery selector sink using a hashchange event

This writeup delves into the sixth XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

DOM XSS in document.write sink using source location.search inside a select element

This writeup delves into the 10th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation