XSS Reflected Back Button Low Security Level

XSS - Reflected (Back Button) Solution: Note: I am using BurpSuite pre-configured browser, in case if you are not using the pre-configured browser then please configure the browser with proxy and then follow the below steps. Step 1. Select the lesson from the portal page a. click on Hack button b. Request will be reflecting in BurpSuite c. Forward the request you will get request - GET /bWAPP/xss_back_button.php HTTP/1.1 d. Right click and send the request to the Repeater tab e. Click on Send Button f. Check the Response - Raw Tab - Search for button (Follow video for more details) g. Note: Referer: http://localhost/bWAPP/portal.php details are here h. Replace the Referer url with the text of your choice. e.g. "Hello PseudoTime" i. Click on Send Button j. Check the Response - Raw Tab - Search for your given input. Your input will be reflected. Step 2. Turn off and then turn On the intercept button: i. * Follow the above steps from a to c again ii. Now, replace the Referer with payload ';alert('PseudoTime');' iii. Forward the request iv. Turn off the intercept v. Go to the lesson page vi. Click on the Back button vii. Check the pop up viii. We have successfully injected the Javascript payload in the Referer Header PseudoTime