This Metasploit module exploits a universal cross-site scripting (UXSS) vulnerability found in Internet Explorer 10 and 11. By default, you will steal the cookie from TARGET_URI (which cannot have X-Frame-Options or it will fail). You can also have your own custom JavaScript by setting the CUSTOMJS option. Lastly, you might need to configure the URIHOST option if you are behind NAT.
37a50587dbae737c3c34aae3bf793f8dca961d0813adb06f366e89505427010a
AWS appears to suffer from a CAPTCHA bypass vulnerability.
2955e115e77880713afefd1475e050fa22bdfa2f21da64a85676517555945dc6
HTTPS Only is a tool that ensures specific sites visited from your browser only transit over HTTPS.
2f05a5ad6f7916b74543a8d3194f6c5a0cc538ddd060a0921f0ccadb08ee13da
HTTPS Only is a tool that ensures specific sites visited from your browser only transit over HTTPS.
2b41b72668be296cc01a1a4278a7b7f165d368d3afe6d6729c1eea9ca2e22d2a
Internet Explorer 11 on Windows 7 suffers from a same origin bypass vulnerability via universal cross site scripting.
3294cd653e4079d6b85c8167d441eb2511790b7a6842394532d5a09b6426fe9c