Bypassing browsers URL encoding to do reflected XSS from query parameter?

It depends on the browser you are using.

Here is a blog post from Troy Hunt regarding this topic:

You can try to intercept the request using tools like Burp Suite. If you intercept the request, you can try to change the encoding character set and check if the desired result occurs.

Tags:

Javascript

Encoding

Xss

Reflected Xss

Recent Posts