Lab: DOM XSS in jQuery anchor href attribute sink using location.search source

Lab: DOM XSS in jQuery anchor `href` attribute sink using `location.search` source

If a JavaScript library such as jQuery is being used, look out for sinks that can alter DOM elements on the page. For instance, the attr() function in jQuery can change attributes on DOM elements. If data is read from a user-controlled source like the URL and then passed to the attr() function, then it may be possible to manipulate the value sent to cause XSS.

$(function(){
$('#backLink').attr("href",(new URLSearchParams(window.location.search)).get('returnUrl'));
});

PreviousLab: DOM XSS in innerHTML sink using source location.search NextLab: Reflected DOM XSS

Last updated 2 years ago

hashtagLab: DOM XSS in jQuery anchor href attribute sink using location.search sourcearrow-up-right

Lab: DOM XSS in jQuery anchor `href` attribute sink using `location.search` source