Garage4hackers Forum - EBay Persistent Cross Site Scripting (Filter Bypass)

Menu
G4H Tutorial and Papers

G4H Tools and Scripts

G4H Exploits

CTF & Meet Writeups
Recent Blog Posts

Teensy USB HID for Penetration Testers - Part 3 - Programming sketches in Arduino

In previous post we saw very basic usage of Arduino Development Environment (ADE) and ran our Hello...
SamratAshok 04-25-2012 10:51 PM

Network Architecture Review Checklist

The primary goal of the checklist is to make it useful and as a trusted guide for IT...
AnArKI 04-22-2012 05:15 PM

Teensy USB HID for Penetration Testers - Part 2 - Basics of Arduino and Hello World

In the first post we installed Arduino Development Environment (ADE). Now lets have a look at...
SamratAshok 04-11-2012 09:17 AM

HP DataProtector - Porting exploit to metasploit.

Nowadays, in almost all my penetration testing projects, HP dataprotector has been the most...
sohil_garg 04-10-2012 04:11 PM

EBay Persistent Cross Site Scripting (Filter Bypass)
by
fb1h2s
Rate this article

Excellent

Good

Average

Bad

Terrible
Published on 08-18-2011 10:29 AM Number of Views: 956

0 Comments
POC Code to Steel Cookies:

Vulnerability Effects:
1) User cookies could be retrieved and misused.
2) Users could be redirected to fake login pages where passwords could be stolen
3) The possibility of an XSS worm would be there.
4) Unwanted transactions could be done in context of logged in user.
Fixing:
1) Strong XSS filters should be deployed if html is allowed, make sure the XSS filter is updated on continues basis considering the update of HTML 5 tags.
2) In case of no HTML, htmlencode all the response.write requests.
3) Many more filter bypassing tags were discovered for current application and is included along with this report.
Note: Many more filter bypass could be found.

Other Filter Bypassing Tags:
- Share
  
  Share this post on
  
  Digg
  
  Del.icio.us
  
  Technorati
  
  Twitter
_{This article was originally published in forum thread:

EBay Persistent Cross Site Scripting (Filter Bypass)
started by
fb1h2s} _{View original post}

G4H Twitter
Latest Posts

Research Resources for MS SharePoint

This page contains research notes on Microsoft’s SharePoint MOSS and WSS.

Link:
https://www.owasp.org/index.php/Research_for_SharePoint_%28MOSS%29
amolnaik4 Today, 12:25 PM

Lolz, with the title "About Admin" I thought...

Lolz, with the title "About Admin" I thought Admins of garage have been exposed ;)

@hazard74, there is always a proper "way" to ask - you need to discover that. It's not that Pentesters don't have...
b0nd Today, 09:10 AM

Ok, Anant Shrivastava. Im Sorry :)

Ok, Anant Shrivastava.

Im Sorry :)
hazard74 Yesterday, 06:19 PM

not exactly this format but a simmilar kind of a...

not exactly this format but a simmilar kind of a format i have seen as part of malware. This url format was used to get the commands from the remote server. there was a whole bunch of domain names in...
Anant Shrivastava Yesterday, 05:30 PM

Hi Neo, Thanks for your comment. I have...

Hi Neo,

Thanks for your comment. I have already done that... but no success..as these URLs are not recognized by search engines as such. getting some info if anyone has come across with URLs in...
Immaturedevil Yesterday, 05:21 PM

All times are GMT +5.5. The time now is 04:59 PM.

Powered by vBulletin® Version 4.1.7
Copyright © 2012 vBulletin Solutions, Inc. All rights reserved.
Search Engine Optimization by vBSEO

Copyright 2010 - 2012, Garage4Hackers