Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
XSS MS Live, by using Google images (and others)
Posted by: jungsonn
Date: December 14, 2006 11:12PM

Though that this was pretty funny. I was trying some XSS on Google and found that if you type in an XSS vector in Google image search, it puts the query into a couple of links from other sites, to seek further, like: Live search, WebShots, Free photo etc.

Here the screenie from google:







k, now i'll show you an XSS hole in Windows Live!





http://search.msn.com/news/results.aspx?q=script%22%3e%3c%22%3e%3cscript%3ealert('xss')%3b%3c%2fscript%3e%3c%22&FORM=BNIR



This is the small screen,
if you want to see the full version you can do here:
http://www.jungsonnstudios.com/mirror/win_live_xss.jpg

So, i tryed the next image links and these executed the XSS also:

- alltheweb
- freephoto
- webshots

Sure, it does work also if you go to the site itself, but why should you? Let google do it for you, then they are sure happy when they see the referrer in their logs +_+



Edited 1 time(s). Last edit at 12/15/2006 04:58AM by jungsonn.

Options: ReplyQuote


Sorry, only registered users may post in this forum.