HTML Injection occurs when an attacker injects malicious HTML code into a web application's input fields or data storage, allowing them to manipulate the page's content, behavior, and appearance. This can be done through user input fields like text boxes, dropdown menus, or file uploads, often exploiting vulnerabilities in the application's input validation and sanitization. As a result, attackers can execute arbitrary code, steal sensitive information, or take control of user sessions.
View All TagsThis series of walkthroughs aims to help out complete beginners with finishing the Pre Security Path on the TryHackMe website. It is based on the learning content provided in the How websites work room.