Skip to main content

Why isn't this XSS working? [Resolved]

I'm learning DOM XSS and I have this code :


 
     Select your language:
     
 
 

but I don't understand why this payload doesn't trigger any XSS :

t.html?default=test

It looks like the symbols are encoded and I don't understand why...

I took the script from https://www.owasp.org/index.php/DOM_Based_XSS so I guess it's vulnerable but I don't know how to exploit it...


Question Credit: Neolex
Question Reference
Asked March 25, 2019
Tags: xss
Posted Under: Security
16 views
1 Answers

Your Answer