Name is required.
Email address is required.
Invalid email address
Answer is required.
Exceeding max length of 5KB

Clickjacking with buster script bypass

Matej Šrubař Oct 08, 2019 07:48AM UTC

Following lab is bugged:

https://portswigger.net/web-security/clickjacking/lab-frame-buster-script

Robot-victim does not click exploit iframe, even if it was copied and set correctly (I was using Google Chrome as advised). Therefore this lab cannot be completed.

Moreover I noticed, if I will use `<button>Click me</button>` instead of `<div>Click me</div>`, robot-victim is not capable to click on that, and therefore to finish all clickjacking Labs.


Ben Wright Oct 08, 2019 11:15AM UTC Support Center agent

Hi Matej,

Thank you for your message.

We have automated tests running several times a day which will test that the labs are working correctly. I have also been through the Frame Busting Script lab this morning and have been able to successfully solve it using the steps outlined in the lab solution.

Please let us know if you need any further assistance.


Post Your public answer

Your name
Your email address
Answer