Jānis Valters
Ethical Penetration tester / DevSecOps / IT Solution Developer / System administrator
© 2024 All rights reserved by valters.eu
Category Archives: Cross-site scripting
Cross-site WebSocket hijacking
In this section, we’ll explain cross-site WebSocket hijacking (CSWSH), describes the impact of a compromise, and spell out how to perform a cross-site WebSocket hijacking attack. What is cross-site WebSocket hijacking? Cross-site WebSocket hijacking (also known as cross-origin WebSocket hijacking) involves a cross-site request forgery(CSRF) vulnerability on a WebSocket handshake. It arises when the WebSocket handshake request…