Till now we have covered soo many things if you haven’t checked other parts I suggest you go with them first then read this one, from this blog I will try to go much deeper for XSS but before that let’s understand the major difference in both reflected XSS and stored XSS then some cookie-related things.
Reflected XSS vs Stored XSS
- The first and most basic difference if you search something on a website with search box your query will be sent to the server and give you the result but will not be stored in the server then it’s reflected XSS.
- But if you enter anything and it’s saved inside the server or it’s database then it becomes a stored XSS as the name suggest.
- Reflected XSS will not be seen to other users because your payload is not saved inside the server and it will not be executed inside someone else browser unless and until you send the victim a link with payload included a basic example for this is if you search anything on any website with search box result will be shown to you only. it doesn’t happen that on amazon you search for shoes and the result is shown in someone else mobile/PC.
- on the other hand, stored XSS save your payload inside the server then if someone visits the same page from where you have tried to execute your payload it will be executed on other browsers too. a basic example, try to comment anything on this blog and visit this same part 6 blog after some time you will see that your comment is loaded every time you visit the same page if you execute your payload successfully here then everyone who visits this page will see your payload.
1. To find the Xss you will need to find a place where you can enter your string like search box, comment options, login, user registration, Http Headers or any other form which allow you to enter anything.