Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Pages: Previous1234567891011Next
Current Page: 9 of 11
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 11, 2007 07:11AM

That one is actually an XSS: http://www.kreditwerk.de/opener.html?kat=nav_links_UNSERUNTERNEHMEN__?cont=javascript:alert%28%22xss%22%29

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: March 12, 2007 02:28PM

yay, google.

http://www.google.com/support/accounts/bin/answer.py?answer=48598&fpUrl=http://ha.ckers.org

Click on "I forgot my password" and it will redirect.



Edited 1 time(s). Last edit at 03/12/2007 02:29PM by Spyware.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: March 13, 2007 03:53AM

http://www.google.com/pagead/iclk?sa=l&ai=BAxMGMmb2RZGiMJ-YgwP45dT_C4aA8hmGxtzBA8CNtwHA_BUQARgBIOW3jgMoAzAAOABQwq7eugZgkYSThfwXmAHmxo4moAHG1LH-A6oBH3NnaG12aWV3K3B1YmxpYytub25hZHVsdCt1c2VuZXTIAQHaATIvZ3JvdXAvbW96aWxsYS5kZXYuZXh0ZW5zaW9ucy90b3BpY3M_c3RhcnQ9MTAmc2E9TqgDAQ&num=1&adurl=http://www.pentagon.gov

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: March 13, 2007 05:09AM

http://switch.atdmt.com/action/msn_hm_nl_NL_signup_link?href=http://google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: March 13, 2007 08:50AM

Spyware Wrote:
-------------------------------------------------------
> yay, google.
>
> http://www.google.com/support/accounts/bin/answer.
> py?answer=48598&fpUrl=http://ha.ckers.org
>
> Click on "I forgot my password" and it will
> redirect.

Nice find. I tried to do this with Yahoo!'s signout feature, but it refused to point to the URL I selected.


Awesome AnDrEw - That's The Sound Of Your Brain Crackin'
http://www.awesomeandrew.net/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 13, 2007 04:51PM

http://service.gmx.net/de/cgi/derefer?DEST=http://www.google.com/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: March 15, 2007 07:03AM

https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=10&rver=4.0.1532.0&wp=MBI&wreply=//www.gmail.com

needs some research though.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spyware
Date: March 16, 2007 09:30AM

http://domainhelp.search.com/click?sl,marin.1.118.1346.1.1.com.e12b19ef5cbf8bd691,http://www.google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 16, 2007 10:19AM

Did we already have this one?

http://sla.ckers.org/forum/redirect.php?phorum_redirect_to=http://www.google.com/ :)

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: rsnake
Date: March 16, 2007 05:59PM

What are you talking about trev? :) Click the link and see what happens. ;)

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: kirke
Date: March 17, 2007 03:48PM

according trev's gmx.net sample:
note that GMX blocks the URL now according the rfer(r)er, how stupid can developers/admins be?

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 17, 2007 04:51PM

Yes, that's pretty pointless, spam mails have no referrers...

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 18, 2007 11:55AM

Three for the price of one!

Redirect: http://usercash.com/go/0/0/http://google.com/
XSS: http://usercash.com/go/0/0/http://google.com/"/onload="alert("xss")
SQL Injection: http://usercash.com/go/0/0/http://google.com/'or'1'='

Anybody want to improve the balance on his account? :)

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Spencer
Date: March 19, 2007 11:55AM

http://www.easyspace.com/cgi-bin/redirect.cgi?type=BNR-100_easyspace_3.gif&url=http://www.google.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: March 27, 2007 11:13AM

http://blogs.msdn.com/utility/Redirect.aspx?U=http://www.google.com/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: March 28, 2007 01:40AM

The National Sex Offender Registry. Did id have to tell them he was moving :-X?
http://www.familywatchdog.us/redirector.asp?page=http://www.awesomeandrew.net/


Awesome AnDrEw - That's The Sound Of Your Brain Crackin'
http://www.awesomeandrew.net/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: id
Date: March 28, 2007 01:02PM

Hey now! They were all legal and mostly willing!

-id

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: March 28, 2007 05:09PM

I found that all the INPUT elements on that site go unsanitized, and are ready for XSS but only via POST requests.

id Wrote:
-------------------------------------------------------
> Hey now! They were all legal and mostly willing!
I remember when I was 16 I told my mom that when I started driving I was going to go to all the local clubs, and pick up drunk and drugged out girls to take advantage of. Then I told her, "It's not rape. It's surprise sex. SURPRISE!"


Awesome AnDrEw - That's The Sound Of Your Brain Crackin'
http://www.awesomeandrew.net/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: hackathology
Date: March 31, 2007 04:11AM

I must say that i am learning hell lot of techniques down here. Redirect and XSS, it will be useful for my pentest. Thank you guys.

hackathology

http://hackathology.blogspot.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: April 04, 2007 06:18AM

http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=www.google.com/%0A

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: tx
Date: April 04, 2007 11:19PM

http://dect.myspace.com/event.ng/Type=click&Redirect=http://www.google.com

-tx @ lowtech-labs.org

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: April 05, 2007 12:03AM

http://www.poopreport.com/phpAdsNew/adclick.php?bannerid=174&zoneid=7&source=&dest=http%3A%2F%2Fwww.google.com =oP

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: April 05, 2007 08:09AM

CrYpTiC_MauleR: Nice find! That one is actually an HTTP Response Splitting vulnerability in Openads 2.0:

[www.poopreport.com] (try this in Firefox)

Funny thing: looking at the source code of adclick.php, it already "protects" against HTTP Response Splitting - \r\n in the destination isn't allowed, using \n is still possible however :)

This is a pretty popular script. Want to post this on the Full Disclosure mailing list? It will get more attention there.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: April 05, 2007 12:25PM

You can post it, your find. I didn't bother to check it out any further, just bored last night =oP and no I wasn't reading the latest poop news.

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: trev
Date: April 06, 2007 12:55PM

http://macdailynews.com/index.php?URL=http://www.google.com/

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: nEUrOO
Date: April 08, 2007 08:30PM

http://portal.spidynamics.com/utility/Redirect.aspx?U=http://google.com

nEUrOO -- http://rgaucher.info -- http://twitter.com/rgaucher

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: April 08, 2007 10:49PM

http://www.hackers.org/ =oP

Options: ReplyQuote
Re: So it begins - Redirects Edition
Date: April 15, 2007 07:19PM

http://search.verisign.com/cs.html?url=http://sla.ckers.org/

Also HTTP Response Splitting
http://search.verisign.com/cs.html?url=http://sla.ckers.org%0ALocation:javascript:%0A%0A%3Cscript%3Ealert(0)%3C/script%3E

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: FR3DC3RV
Date: April 23, 2007 12:23PM

Some sort of cgi proxy:

http://www.min-edu.pt/outerFrame.jsp?link=http://fr3dc3rv.blogspot.com

-------------------------------
http://fr3dc3rv.blogspot.com

Options: ReplyQuote
Re: So it begins - Redirects Edition
Posted by: Foo
Date: April 24, 2007 04:30AM

Sorry if this one is an oldie, but here it comes.

http://www.google.com/gwt/n?

Googles redirect service ;p

Options: ReplyQuote
Pages: Previous1234567891011Next
Current Page: 9 of 11


Sorry, only registered users may post in this forum.