XSS encountered httponly
#1
Angry Hi, everyone, digging XSS vulnerabilities while doing the test, but if you meet httponly, do you have any good ideas to bypass?
Reply
#2
(04-29-2018, 01:35 PM)yellow123 Wrote: Angry Hi, everyone, digging XSS vulnerabilities while doing the test, but if you meet httponly, do you have any good ideas to bypass?

Quote:If the HttpOnly flag (optional) is included in the HTTP response header, the cookie cannot be accessed through client side script (again if the browser supports this flag). As a result, even if a cross-site scripting (XSS) flaw exists, and a user accidentally accesses a link that exploits this flaw, the browser (primarily Internet Explorer) will not reveal the cookie to a third party.

Source: https://www.owasp.org/index.php/HttpOnly

Does it sound like there is a way to bypass the HttpOnly header? Try and think reeeaaaallly hard before asking questions.

Here are some ideas:

1. Intercept the HTTP request and remove the header
2. Downgrade the client browser to a version that doesn't support HTTPOnly
3. Use a XST attack instead (but, again, you'll probably have to also downgrade the client browser)

Things like HTTPOnly exist for a reason, to stop specific attacks. If they didn't stop these attacks, then why do they exist? You shouldn't assume there is always a way to bypass protections.

Instead, think creatively about WHY you need XSS - can you accomplish your objective another way? Maybe in order to exploit an XSS, you first need to gain system access to a user's systems and mess around with it?
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [Tutorial] XSS through Exif headers Insider 1 525 06-16-2020, 11:51 AM
Last Post: LaZr4us
  Guide to XSS (Examples included) NO-OP 3 12,338 04-29-2019, 12:44 PM
Last Post: mhiats37
  [PoC] RunBox.com x MailChimp.com - Stored XSS Vulnerabilities (Bug Bounty Hunting) Daisuke Dan 3 5,732 04-24-2019, 08:47 PM
Last Post: thunder
  Exploiting Reflective XSS (Post) Insider 1 4,165 04-24-2019, 08:32 PM
Last Post: thunder