Detections
Analytics
Content Injection
Description
Content spoofing, also referred to as content injection, “arbitrary text injection” or virtual defacement, is an attack targeting a user made possible by an injection vulnerability in a web application. When an application does not properly handle user-supplied data, an attacker can supply content to a web application, typically via a parameter value, that is reflected back to the user. This presents the user with a modified page under the context of the trusted domain. This attack is typically used as, or in conjunction with, social engineering because the attack is exploiting a code-based vulnerability and a user’s trust.
Products, Sensors, and Dependencies
| Product | Dependencies | Data source | Access required | Protocol | Data Collected | Notes |
|---|---|---|---|---|---|---|
| Tenable Web App Scanning | Web Applications | Authenticated Scan | HTTP/HTTPS | Content Injection | Plugin IDs: 113212 |
References
Attack Path Technique Details
Framework: OWASP
Family: Injection
Technique: Content Spoofing
Sub-Technique: Content Spoofing
Platform: Web Application
Products Required: Tenable Web App Scanning
Tenable Release Date: 2022 Q2