Course
This course teaches you how to exploit vulnerabilities in applications using the <code>postMessage</code> method without setting a destination. By understanding and leveraging this issue, you will learn how to get an administrator to leak confidential information to your server.
Skills covered
Injection
Authentication
Authorisation
Client Side
Included with PRO
Full course content
2 videos
Common mistakes
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
