Course
In this lab, you'll learn how to bypass a filter that stops the execution of PHP code when the word "alert" is detected. Using JavaScript's <code>eval</code> and <code>String.fromCharCode()</code>, you can trigger an alert box without directly using the word "alert".
Skills covered
Injection
Client Side
Topics
XSS
CWE-79
Included with PRO
Full course content
3 videos
Common mistakes
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
