marcialwushu
commented
6 years ago How do I open the JavaScript console in different browsers?
Chrome Opening the “Console” panel of Chrome’s DevTools:
Windows: Ctrl + Shift + J
Mac OS: Cmd + Opt + J
Note: In addition to the “Console” panel, there also exists a smaller slide-up console which can be toggled via Esc while any of the other panels is active.
Firefox
Opening the “Console” panel in Firefox’s Developer Tools:
Windows: Ctrl + Shift + K
Mac OS: Cmd + Opt + K
Note: In addition to the “Console” panel, there also exists a smaller slide-up console which can be toggled via Esc while any of the other panels is active.
Full documentation
Internet Explorer
Opening the “Console” panel in Internet Explorer’s F12 Developer Tools:
F12, then click on the “Console” tab Note: In addition to the “Console” panel, there also exists a smaller slide-up console which can be toggled via Ctrl + ` while any of the other panels is active.
Full documentation
Safari Note: In order to view the console in Safari, you have to enable the “Show Develop menu in menu bar” setting in the “Advanced” pane of Safari’s preferences (screenshot).
Opening the “Console” panel in Safari’s Web Inspector:
Cmd + Opt + C Note: In addition to the “Console” panel, there also exists a smaller slide-up console which can be toggled via Esc while any of the other panels is active.
Full documentation
Opera Windows and Linux: Ctrl + Shift + I Mac : ⌘+⌥+I Full documentation
Demo report: XSS in FGF home page
In some fantasy world, the home page of FGF is vulnerable to an imaginary Cross-Site Scripting attack.
Impact
In our fantasy world, exploiting this vulnerability allows us to run an external script on your website that for example steals the cookies of the users that's facing the XSS and thus gaining access to the account of the victim.