Follow us on Twitter!
It is never to LATE to become what you never WERE.
Sunday, April 20, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 20
Guests Online: 18
Members Online: 2

Registered Members: 82843
Newest Member: hx47
Latest Articles
View Thread

HellBound Hackers | Challenges | Basic

Author

Basic 27

ellipsis
Member



Posts: 173
Location:
Joined: 13.06.09
Rank:
Uber Elite
Posted on 17-02-13 09:06
I successfully got empty tags and tried encoding the tags as html entities and to no avail because the output textbox doesn't decode the encoded chars.

Can I PM someone with what I have? I've already went through the OWASP filter evasion cheat sheet for help.


10000101
Author

RE: Basic 27

Mordak
Evil Sorcerer



Posts: 571
Location: England
Joined: 01.01.70
Rank:
Elite
Posted on 17-02-13 09:10
Your making it to complex !!! Pm me if you want.




Edited by Mordak on 17-02-13 09:10
http://developers.hellboundhackers.org
Author

RE: Basic 27

tnk04
Member

Your avatar

Posts: 8
Location:
Joined: 23.10.12
Rank:
Newbie
Posted on 20-02-13 09:53
I'm not entirely certain it's actually working, you know, unless I'm missing something, too. I can get it to display the "injection", though it's obviously been through htmlentities()... I don't remember ever having to bypass that, but then again, it was a hell of a long time ago.
Author

RE: Basic 27

korg
Admin from hell



Posts: 2798
Location: ENDING YOUR ONLINE EXPERIENCE!
Joined: 01.01.06
Rank:
God
Posted on 20-02-13 09:57
it's working fine. Again try something simple to inject.


i57.photobucket.com/albums/g215/korg1269/shodan13.jpg

I deal in pain, All life I drain, I dominate, I seal your fate.
O R