The best programming language - Power

[Moonbat]

I'm gonna hope this is it.

<img src="javascript:alert("This?")">

Guess not, maybe...

<img src=javascript:alert("This?")>

Hmm... no....

<img src="javascript:alert('This?')">

Gah, last try, pleaseohplease work...

<img src=alert("Hello")>
-----------------------------------------------
Nvm, theses guys are smart, they change the output to the webpage so it looks like this

<!-- message -->
<div id="post_message_*4725">I'm gonna hope this is it.<br />
<br />
&lt;img src=&quot;javascript<b></b>:alert(&quot;This?&quot&quot;&gt;<br />
<br />
Guess not, maybe...<br />
<br />
&lt;img src=javascript<b></b>:alert(&quot;This?&quot&gt;<br />
<br />
Hmm... no....<br />
<br />
&lt;img src=&quot;javascript<b></b>:alert('This?')&quot;&gt;<br />
<br />
Gah, last try, pleaseohplease work...<br />
<br />
&lt;img src=alert(&quot;Hello&quot&gt;</div>
<!-- / message -->

I guess the filter replaces my <,>," with the HTML character entity value. I've seen some forums that don't do this, therefore are vulnerable to injection. They would see the alert come up.

[LapraS]

I will try to post the profile hack I have scripted as soon as possible.
As for Session ID I was referring to the *2 digits cookie such as:
edb0e8665db4e*042fe0*76a8*aade*6
Basically what I did was find a free webhost, upload 4 files, namely; cookies.txt
js.php, js.js.
In my profile I posted a link to my webhost. Whenever someone viewed my profile his/her Session ID was shown on my webhost. I simply copied this Session ID into the Anec Cookie editor...
I submitted;
Name: PHPSESSID
Path: [url]www.bootleggers.us[/url]
And the Session ID
I opened Mozilla Firefox and browsed for [url]www.bootleggers.us/news.php[/url].

[Ezekiel]

I'm gonna hope this is it.

<img src="javascript:alert("This?")">

Guess not, maybe...

<img src=javascript:alert("This?")>

Hmm... no....

<img src="javascript:alert('This?')">

Gah, last try, pleaseohplease work...

<img src=alert("Hello")>
-----------------------------------------------
Nvm, theses guys are smart, they change the output to the webpage so it looks like this



I guess the filter replaces my <,>," with the HTML character entity value. I've seen some forums that don't do this, therefore are vulnerable to injection. They would see the alert come up.

No, the bug is in the top right search box for the actual site. If you enter this into it, you get the popup:

</title></head><body><script type="text/javascript">alert("XSS");</script>

As for bugs in widely used forum scripts; they're rare. In forums like vBulletin, they're non-existent (most of the the time).

[Rase]

Javascript + Advanced html Ftw.

Also C Is ok.