Iframes Archives - EITCA Academy

How can iframes be used in the context of stored HTML injection attacks, and why are they difficult to detect?

Saturday, 05 August 2023 by EITCA Academy

In the context of stored HTML injection attacks, iframes can be used as a means to execute malicious code within a web application. An iframe, short for inline frame, is an HTML element that allows the embedding of another document within the current HTML document. This feature is commonly used to display external content such

Published in Cybersecurity, EITC/IS/WAPT Web Applications Penetration Testing, Web attacks practice, bWAPP - HTML injection - stored - blog, Examination review

Tagged under: Cybersecurity, HTML Injection, Iframes, Stored Attacks, Web Application Security

How can an attacker bypass the Same Origin Policy to perform a CSRF attack using HTML frames or iframes?

Saturday, 05 August 2023 by EITCA Academy

The Same Origin Policy (SOP) is a fundamental security mechanism implemented by web browsers to prevent unauthorized access to sensitive information and protect against various attacks, including Cross-Site Request Forgery (CSRF). However, attackers can bypass the SOP and perform CSRF attacks using HTML frames or iframes by exploiting certain vulnerabilities in web applications. In this

Published in Cybersecurity, EITC/IS/WASF Web Applications Security Fundamentals, Same Origin Policy, Cross-Site Request Forgery, Examination review

Tagged under: Cross-Origin Resource Sharing, CSRF, Cybersecurity, HTML Frames, Iframes, SOP, Web Security

EITCA Academy

SIGN IN YOUR ACCOUNT TO HAVE ACCESS TO DIFFERENT FEATURES

FORGOT YOUR DETAILS?

CREATE ACCOUNT

How can iframes be used in the context of stored HTML injection attacks, and why are they difficult to detect?

How can an attacker bypass the Same Origin Policy to perform a CSRF attack using HTML frames or iframes?