Using Mutillidae to perform XSS scripting and SQL injection. — By Agidotan Reuben Ayoola.

I opened Mutillidae on my Firefox thats located at the top left area on my Kali Linux,then inputted <127.0.0.1/mutillidae/> so mutillidae could run

After running,i clicked on OWASP 2017,took me to an array of tables,A7 respectively,then i clicked on <Reflected (First order)>,moved to the next to click on <DNS Lookup.>

After clicking on DNS lookup,i see this page then i made a script <script>alert(‘benny is king’)</script> then i clicked on <Lookup DNS>…

After,clicking,this is the prompt i get,this is to show that I’ve taken over the target computer.