Content spoofing, also known as a content injection, “arbitrary text injection,” or virtual defacement, is a user-targeted attack made feasible via an injection vulnerability in a web application. When a web application fails to correctly manage user-supplied data, an attacker can send material to the web application, generally via a parameter value, which is then mirrored back to the user. This displays a changed page in the context of the trusted domain to the user. Because the attack makes use of a code-based vulnerability and a user’s trust, it is frequently employed in conjunction with social engineering. As a side aside, this attack is frequently misconstrued as a type of bug that has no effect.
Text injection, also known as Text-Based Injection (TBI), is an injection in which user input is mirrored as plaintext in the application response. This is one method of carrying out content spoofing, also known as a content injection or virtual defacement, which may be employed in phishing assaults.
When a web application does not correctly manage user-supplied data, it is subject to text injection. An attacker can feed material to a web application, generally via a parameter value, or from the URL only, which is mirrored back to the user. Under the context of the trusted domain, the user will be provided with a changed page.
Audit Procedures
Text injection can be found in the following places:
- The page response reflects user input via parameters or directly in the URL.
- Text/plain is the content-type.
- The application displays the default error pages.
ZOFixer.com security scan helps to find this vulnerability in your software and server, you can easily use it by registering on our website and activating the 30-day trial.