The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Solution is outdated for "Lab: Reflected XSS with some SVG markup allowed"

Roman | Last updated: Aug 08, 2021 04:08PM UTC

Hello! I've been found out that the intended solution is outdated in steps 7-9 and 12-14. The reason for this is that the <animateTransform> tag is no longer in XSS cheat sheet page. So that with some svg-specivit events. Eventhoug all svg-related events can be easily found on the internet and created a simple list for intruder, the <animateTransform> is crucial.

Hannah, PortSwigger Agent | Last updated: Aug 11, 2021 02:08PM UTC