Author Topic: XSS Vulnerability Question (Read 2974 times)

PiZZ4 · « **on:** September 11, 2011, 09:14:48 pm »

I'm sort of a noob when it comes to XSS vulnerabilities, so here is a noob question:

Lets say if you have found a xss vulnerability on a website, what can you do with it?

Kulverstukas · « **Reply #1 on:** September 11, 2011, 09:32:39 pm »

I guess nothing. Unless it's an persistent one.

Satori · « **Reply #2 on:** September 11, 2011, 09:54:22 pm »

Quote from: Kulverstukas on September 11, 2011, 09:32:39 pm

I guess nothing. Unless it's an persistent one.

And this isnt true.
You could make a cookie grabber and send the xxs vulnerable link to victims for example.

ca0s · « **Reply #3 on:** September 11, 2011, 10:01:38 pm »

You can do whatever you want. Exploit a browser bug, steal credentials, use browsers as zombies.
If is persistent, so much easier. If not, also exploitable (more likely targeted attacks).
For an example, look for the Beef framework.

gh0st · « **Reply #4 on:** September 11, 2011, 10:25:18 pm »

you can steal the credentials of some1 if he/she clicks the link or visit the exploit
http://www.youtube.com/watch?v=WZCXIrW0xZ0
http://www.youtube.com/watch?v=JBpG2fie_aA&feature=related
thanx to infinity exists
I know a bit the teory but Ive never done it before

FuyuKitsune · « **Reply #5 on:** September 12, 2011, 01:41:19 am »

Insert Javascript to the page. Sometimes it's a bit difficult with the filters, basic PHP filters may require some code maneuvering, but it's easy enough to run Javascript or link to a JS file. Last time I did an XSS I did JS to change the background image to a dancing banana.

PiZZ4 · « **Reply #6 on:** September 13, 2011, 05:49:05 pm »

Quote from: ca0s on September 11, 2011, 10:01:38 pm

You can do whatever you want. Exploit a browser bug, steal credentials, use browsers as zombies.
If is persistent, so much easier. If not, also exploitable (more likely targeted attacks).
For an example, look for the Beef framework.

It's defiantly persistent, I've double checked just to make sure it was.

[/quote]Insert Javascript to the page. Sometimes it's a bit difficult with the filters, basic PHP filters may require some code maneuvering, but it's easy enough to run Javascript or link to a JS file. Last time I did an XSS I did JS to change the background image to a dancing banana.[/quote]

Now that is interesting, I guess I'll have to look into that.

FuyuKitsune · « **Reply #7 on:** September 13, 2011, 06:30:07 pm »

Quote from: PiZZ4 on September 13, 2011, 05:49:05 pm

Now that is interesting, I guess I'll have to look into that.

It has to be a .js file. I spend a long time screwing up because I was trying to run .txt extensions and extensionless files in HTML.

iMorg · « **Reply #8 on:** September 14, 2011, 09:02:02 am »

Session Hijacking.

ande · « **Reply #9 on:** September 14, 2011, 02:40:23 pm »

Quote from: iMorg on September 14, 2011, 09:02:02 am

Session Hijacking.

That would be the same as cookie grabbing.

noob · « **Reply #10 on:** September 14, 2011, 04:50:48 pm »

Code: [Select]

http://rapidshare.com/files/129854305/www_GoonWarez_com_1213375552.zip

EvilZone

News:

Author Topic: XSS Vulnerability Question (Read 2974 times)

PiZZ4

XSS Vulnerability Question

Kulverstukas

Re: XSS Vulnerability Question

Satori

Re: XSS Vulnerability Question

ca0s

Re: XSS Vulnerability Question

gh0st

Re: XSS Vulnerability Question

FuyuKitsune

Re: XSS Vulnerability Question

PiZZ4

Re: XSS Vulnerability Question

FuyuKitsune

Re: XSS Vulnerability Question

iMorg

Re: XSS Vulnerability Question

ande

Re: XSS Vulnerability Question

noob

Re: XSS Vulnerability Question