+ Reply to Thread
Results 1 to 2 of 2
Like Tree2Likes
  • 1 Post By [s]
  • 1 Post By 41.w4r10r

Thread: Google Fake XSS Share/Save - My123World.Com!

  1. 09-18-2012, 11:08 AM #1
    [s]
    [s] is offline
    Security Researcher [s] will become famous soon enough [s]'s Avatar
    Join Date
    Nov 2010
    Posts
    187
    Blog Entries
    2
    Thanks
    62
    Thanked 53 Times in 30 Posts

    Google Fake XSS



    Supb Guys , Year ago i seeking Bugs in Google Applications. I found one bug which is already know to Google , in fact Google added this vulnerability to make fool (Newbies). After a long time waiting , i have deiced to release it !

    Code:
    Fake Vuln URL  : https://www.google.com/appserve/security-bugs/new?rl=%22%3E%3Cscript%3Ealert%281%29%3C/script%3E
    Google used common payload to make fool !

    It was wired for me when i use alert(1) , it was popping 41 As show in the following image.



    Fake Alert Generating JS Code

    Code:
    <script>
    (function(){
        var sel = document.getElementById('f-Category');
        var inp = document.getElementById('f-Category-Other');
        setInterval(function(){
            if(sel.value == "other" && sel.style.display != 'none'){
                inp.style.display = 'block';
                sel.style.display = 'none';
                inp.focus();
                inp.onblur = function(){
                    if (inp.value == '' && inp.style.display == 'block'){
                        sel.style.display = 'block';
                        inp.style.display = 'none';
                        sel.value = 'none';
                    }
                }
            }
         },100);
         eval(function(p,a,c,k,e,r){e=function(c){return c.toString(a)};if(!''.replace(/^/,String)){while(c--)r[e(c)]=k[c]||e(c);k=[function(e){return r[e]}];e=function(){return'\\w+'};c=1};while(c--)if(k[c])p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c]);return p}('5(4.3.6(/2\\([\'"]a[\'"]\\)/))2(\'c\');7 5(4.3.6(/2\\([0-9]/))2(b);7 5(4.3.6(/2\\(8.d/))2(\'q.0.0.1\');7 5(4.3.6(/2\\(8.f/))4.3=\'g://h.i/j/k-l-m-n-o/p.e\';',27,27,'||alert|href|location|if|match|else|document||xss|42|excesses|domain|aspx|cookie|http|allrecipes|com|Recipe|Beths|Spicy|Oatmeal|Raisin|Cookies|Detail|127'.split('|'),0,{})); 
    })();
  </script>
    As you can see the eval function which is responsible for alerting 41 ... You can use anyother payload to alert different different output !

    PS: I Don't know some one already known it ! Coz its my very old finding

    Thanks
    Sandeep Aka [S]
    Last edited by [s]; 09-18-2012 at 11:14 AM.
    fb1h2s likes this.

    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    Reply With Quote Reply With Quote
  2. 09-18-2012, 12:50 PM #2
    41.w4r10r
    41.w4r10r is offline
    InfoSec Consultant 41.w4r10r has a spectacular aura about41.w4r10r has a spectacular aura about41.w4r10r has a spectacular aura about 41.w4r10r's Avatar
    Join Date
    Jul 2010
    Location
    Pune
    Posts
    301
    Thanks
    31
    Thanked 82 Times in 37 Posts
    yeah this i knew... google playing game....
    [s] likes this.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

LinkBacks (?)

  1. Twitter
    Refback This thread
    10-21-2012, 02:31 PM
  2. Sandeep Kamble (SandeepL337) on Twitter
    Refback This thread
    10-02-2012, 03:33 PM
  3. Google Fake XSS
    Refback This thread
    09-18-2012, 11:10 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules