LAB 106 - Identifying Cross-Site Scripting Vulnerabilities

Course Details

Course Number: LAB 106

Course Duration: 7 minutes

Course CPE Credits: .14

NICE Specialty Areas

Risk Management (RSK)
Securely Provision (SP)
Software Development (DEV)

Related Subject Matter

Learn Labs
NIST
OWASP ASVS
OWASP Web
Web

Foreign Languages Available:

English

Course Overview

This lab presents a challenge in the Account All cyber range that reveals the presence of a Cross-Site Scripting vulnerability, caused in part by improper input validation and filtering. Cross-site scripting vulnerabilities are web-based vulnerabilities that can be exploited whenever a web application embeds untrusted input data in site content or web responses without first validating the data or its encoding.

In this lab, you are an adversary performing tests to determine whether Cross-Site Scripting vulnerabilities are present on the Timesheets page.

Ready to Demo this course? Questions? Contact Us!