| Author |
xss input |
chronicburst
Member
Posts: 466
Location: /root/
Joined: 03.01.08
Rank: Elite |
|
I have come across a vulnerability on a site however I have noticed that the vulnerability only responds to the following input:
"><scblockedript>alert('TEST')</scblockedript>
So in other words this doesn't work:
<scblockedript>alert('TEST')</scblockedript>
My question is why would using the "> make it function properly? Is that how the server interprets a set of direct server input or something of that nature?
|
  
|
| Author |
RE: xss input |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
You have to close another tag first.
Example: <input text="<XSS HERE>">blah</input>
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: xss input |
chronicburst
Member
Posts: 466
Location: /root/
Joined: 03.01.08
Rank: Elite |
|
So the > closes the tag. And the tag it is closing is the tag for the search. So I close the search and then I am free to XSS. I am not going to though. Not on this site. I may just warn them to fix the issue. Other whys I am gong to stay out of it. I was only wondering about the closing tag. Thanks.
|
|
|
| Author |
RE: xss input |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
|
chronicburst wrote:
So the > closes the tag. And the tag it is closing is the tag for the search. So I close the search and then I am free to XSS. I am not going to though. Not on this site. I may just warn them to fix the issue. Other whys I am gong to stay out of it. I was only wondering about the closing tag. Thanks.
">
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: xss input |
DarkMantis
Member
Posts: 192
Location: Bringing Security To You!
Joined: 23.04.06
Rank: Elite |
|
|
spyware wrote:
You have to close another tag first.
Example: <input text="<XSS HERE>">blah</input>
As spyware pointed out, it closes the other quotes and tags
This is what you'll get when you use the "> instead of just the <scblockedript>...</scblockedript>
<input text="">[XSS]</input>
So it executes whats out side of the <input text=""> instead of whats inside the quotes.
Sorry if i couldn't be more informative but I don't know how to explain it any better than that.
Hope this helped.
THE PEOPLE UNITED WILL NEVER BE DEFEATED!
don't care for money, and money's not for me,
the money fueled this empire and our racist history.
Although I'm forced to use it, the rules have all been set.
But life is not worth living when yer soul is in debt!
MONEY KILLS.
MONEY RAPES.
MONEY LIES.
MONEY HATES.
Edited by DarkMantis on 23-09-08 22:23 |
|
|
| Author |
RE: xss input |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
...bit of a nasty echo in here, isn't there? Weird. Thought HBH was too shallow to be able to echo.
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: xss input |
DarkMantis
Member
Posts: 192
Location: Bringing Security To You!
Joined: 23.04.06
Rank: Elite |
|
|
spyware wrote:
...bit of a nasty echo in here, isn't there? Weird. Thought HBH was too shallow to be able to echo.
I was just trying to help.
THE PEOPLE UNITED WILL NEVER BE DEFEATED!
don't care for money, and money's not for me,
the money fueled this empire and our racist history.
Although I'm forced to use it, the rules have all been set.
But life is not worth living when yer soul is in debt!
MONEY KILLS.
MONEY RAPES.
MONEY LIES.
MONEY HATES. |
|
|
| Author |
RE: xss input |
spyware
Member
Posts: 4190
Location: The Netherlands
Joined: 14.04.07
Rank: God
Warn Level: 90
|
|
|
DarkMantis wrote:I was just trying to help.
Help...
elp..
elp..
"The chowner of property." - Zeph Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term. - Carl Sagan Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor? - Ebert |
|
|
| Author |
RE: xss input |
DarkMantis
Member
Posts: 192
Location: Bringing Security To You!
Joined: 23.04.06
Rank: Elite |
|
¬_¬
THE PEOPLE UNITED WILL NEVER BE DEFEATED!
don't care for money, and money's not for me,
the money fueled this empire and our racist history.
Although I'm forced to use it, the rules have all been set.
But life is not worth living when yer soul is in debt!
MONEY KILLS.
MONEY RAPES.
MONEY LIES.
MONEY HATES. |
|
|
| Author |
RE: xss input |
chronicburst
Member
Posts: 466
Location: /root/
Joined: 03.01.08
Rank: Elite |
|
Haha alright understood. Thanks spyware.
And you too mantis (for trying).
|
|
|
Main:
