Reflected XSS into a JavaScript string with angle brackets HTML encoded

This writeup delves into the 9th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

Reflected DOM XSS

This writeup delves into the 12th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

DOM XSS in jQuery selector sink using a hashchange event

This writeup delves into the sixth XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

DOM XSS in document.write sink using source location.search inside a select element

This writeup delves into the 10th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

DOM XSS in AngularJS expression with angle brackets and double quotes HTML-encoded

This writeup delves into the 11th XSS lab in port swigger.

Jan 19, 2026 Vulnerabilities, WebExploitation

Stored XSS into HTML context with nothing encoded

This writeup delves into the second XSS lab in port swigger.

Jan 18, 2026 Vulnerabilities, WebExploitation

DOM XSS in jQuery anchor href attribute sink using location.search source

This writeup delves into the fifth XSS lab in PortSwigger.

Jan 18, 2026 Vulnerabilities, WebExploitation

DOM XSS in innerHTML sink using source location.search

This writeup delves into the fourth XSS lab in port swigger.

Jan 18, 2026 Vulnerabilities, WebExploitation

DOM XSS in document.write sink using source location.search

This writeup delves into the third XSS lab in port swigger.

Jan 18, 2026 Vulnerabilities, WebExploitation

Reflected XSS into HTML context with nothing encoded

This writeup delves into the first XSS lab in port swigger.

Jan 17, 2026 Vulnerabilities, WebExploitation