Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
secondcup.com xss
Posted by: peekay
Date: September 08, 2008 11:30PM

Canadian coffee:

http://www.secondcup.com/eng/

Search box not validating anything:

</span><img src="INSERT_FAVORITE.GIF">

Seems to accept only POSTs and all output gets converted to uppercase (can be bypassed by simple encoding I presume.)

Help improve?



Edited 1 time(s). Last edit at 09/08/2008 11:32PM by peekay.

Options: ReplyQuote
Re: secondcup.com xss
Posted by: C1c4Tr1Z
Date: September 09, 2008 12:11AM

I only have found some XSS but with POST requests.

But if you are searching for bugs, there's a nice SQL Injection..

---------------------------------------------------------------------------------
[[url=http://voodoo-labs.org]Voodoo Research Group[/url]]
[[url=http://foro.undersecurity.net/]US.net forum[/url]]

Options: ReplyQuote
Re: secondcup.com xss
Posted by: Kyo
Date: September 09, 2008 01:03PM

http://wocares.com/epf.php

;)

Options: ReplyQuote
Re: secondcup.com xss
Posted by: peekay
Date: September 14, 2008 08:46AM

Thanks Kyo handy link ;-)

Keeping with the Canadian theme, Humber College had a similar problem:

http://search.humber.ca/cgi-bin/htsearch?words=%3Cscript%3Ealert%28%27XSS%27%29%3B%3C%2Fscript%3E

Disclosed Mon Sept 8, fixed a couple of days later! (by replacing their custom search with Google, for better or worse.) Kudos Humber for taking action.

Options: ReplyQuote


Sorry, only registered users may post in this forum.