Our customers and friends often ask us how a real hacker attack looks like. We want to show this on a very simple, but very common vulnerability called Cross Site Scripting or XSS. Since a lot of people can not imagine how this works and they downplay the impact of this vulnerability to an attacker being able to include an image or a redirect to a different page, we want to show how you can abuse this vulnerability to gain administrator access to an e-shop.
So this is how hackers really work:
