A web application named [Elgg] (http://www.xsslabelgg.com) provided in the pre-built Ubuntu VM image for XSS Attack.
A malicious JavaScript program that forges HTTP requests to -
- Becoming the Victim’s Friend
- Modifying the Victims Profile
- Posting on the Wire on Behalf of the Victim
- Become a Self-Propagating Worm