jmaxxz Posted March 31, 2009 Share Posted March 31, 2009 This just show why you should lock down what exactly gets passed in via URL....and that url hacking is amazingly simple and fun! http://digg.com/people/The_real_life_Wolverine/ Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted March 31, 2009 Share Posted March 31, 2009 And now you have sum XSS http://www.msoe.edu/campus/directory/detai...3E%3C/SCRIPT%3E http://www.msoe.edu/campus/directory/detai...SCRIPT%3E%22%3E http://www.msoe.edu/campus/directory/detai...3C%3C/SCRIPT%3E Now what you do is get an xss worm or cookie stealer and submit that to digg(because they are all retarded) and have people click in and steal their booty. Reddit wouldnt fall for that shit. Quote Link to comment Share on other sites More sharing options...
jmaxxz Posted April 2, 2009 Author Share Posted April 2, 2009 And now you have sum XSS http://www.msoe.edu/campus/directory/detai...3E%3C/SCRIPT%3E http://www.msoe.edu/campus/directory/detai...SCRIPT%3E%22%3E http://www.msoe.edu/campus/directory/detai...3C%3C/SCRIPT%3E hmm crap mine is running into the browser's security settings...anyway around this? http://www.msoe.edu/campus/directory/detai...3E%3C/SCRIPT%3E (someone wanted a new version with image replacement, and this is an early test) Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted April 2, 2009 Share Posted April 2, 2009 http://www.msoe.edu/campus/directory/detai...3E%3C/SCRIPT%3E http://www.msoe.edu/campus/directory/detai...13237.gif%22%3E can i has prize nao? If you want to you can even design a new layout via .js. XSS is a wonderful thing. Adding .swf http://www.msoe.edu/campus/directory/detai...%3E%3C/EMBED%3E you can also control the size with other params type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="10000" height="10000" Editing html... this is pretty good stuff if you know how to use it. http://www.msoe.edu/campus/directory/detai...Y%3E%3C/HTML%3E Edit cookies (use ID will now be SHIT) http://www.msoe.edu/campus/directory/detai...ERID=SHIT%22%3E Now you can do other things but since that site is played out I am done.. I think I have done enough Quote Link to comment Share on other sites More sharing options...
Mark Manching Posted April 2, 2009 Share Posted April 2, 2009 Some XSS Tryouts http://www.msoe.edu/campus/directory/detai...ms%20Was%20Here! http://www.msoe.edu/campus/directory/detai...etty%20La%20Fea? Also the Cookie (edited) http://www.msoe.edu/campus/directory/detai...240243028905648 Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted April 2, 2009 Share Posted April 2, 2009 http://www.msoe.edu/campus/directory/detai...d=borowicz&pageTitle= that is a div so renaming that will help get you in the right direction jmaxxz Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted April 2, 2009 Share Posted April 2, 2009 While we are on the topic is also looks like rhapsody may have some XSS vulns. Might do more with it later. http://play.rhapsody.com/playlistcentral/p...3C%3C/SCRIPT%3E Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.