acasa
gazeta
forum
album
lista programe linux
wiki
bash
despre
Welcome,
Guest
. Please
login
or
register
.
Linux Soft Forum
Află
»
Linux Soft
»
inca un xss in bash.linuxsoft.ro
Username:
1 Hour
1 Day
1 Week
1 Month
Forever
Password:
Home
Help
Login
Register
Pages: [
1
]
Go Down
« previous
next »
Print
Author
Topic: inca un xss in bash.linuxsoft.ro (Read 1178 times)
0 Members and 2 Guests are viewing this topic.
hydrarulz
Veteran
warning flame-war
inca un xss in bash.linuxsoft.ro
«
on:
March 24, 2008, 12:21:48 PM »
in
http://bash.linuxsoft.ro/search/
in formular variabila ascdesc, si anume:
<select id="order" name="ascdesc">
se trimite cu valoarea:
' "><script>alert(1)</script>
rezulta aceeasi faza cu echo mysql_error() cum este explicata aici:
http://websecurity.ro/blog/2007/11/22/xss-in-mysql_error/
Logged
http://www.websecurity.ro
wonder
Veteran
Re: inca un xss in bash.linuxsoft.ro
«
Reply #1 on:
March 24, 2008, 01:19:03 PM »
fixed
Logged
Give what you have. To someone, it may be better than you dare to think.
My blog
wonder.rodp.net
hydrarulz
Veteran
warning flame-war
Re: inca un xss in bash.linuxsoft.ro
«
Reply #2 on:
March 24, 2008, 01:57:42 PM »
nu e fixed.
acum e un "<script>" inainte. deci daca postez
ASC' "></script><h1>aaaa</h1><script>alert(1)</script>
tot merge ...
try again
«
Last Edit: March 24, 2008, 01:58:42 PM by hydrarulz
»
Logged
http://www.websecurity.ro
~Empathy~
Veteran
Decadence is Bliss...
Re: inca un xss in bash.linuxsoft.ro
«
Reply #3 on:
March 24, 2008, 04:03:42 PM »
Fixed.
Logged
blog.mgk.ro
Saltwater
Veteran
Whatever™
Re: inca un xss in bash.linuxsoft.ro
«
Reply #4 on:
March 24, 2008, 07:04:07 PM »
Bai Johan, cate gauri ai?
Logged
Astazi nu am semnatura.
Pages: [
1
]
Go Up
Print
« previous
next »
Jump to:
Please select a destination:
-----------------------------
Află
-----------------------------
=> Ştiri
=> Gazetă
=> Linux Soft
-----------------------------
Învaţă
-----------------------------
=> Tips&Tricks
=> Programe recomandate
===> Multimedia
===> Grafica
===> Servere
===> Jocuri
===> X/Desktop
===> Programare
===> Consola
===> Editoare text
===> Office
===> Comunicare
=> Termeni IT
-----------------------------
Cercetează
-----------------------------
=> Întrebări de bază
=> Distribuţii
=> Reţele, servere
=> Software
=> Hardware
=> Jocuri
=> Programare
-----------------------------
Discută
-----------------------------
=> Arena
=> /dev/random
=> Cafenea
=> Oferte
Loading...
Linux Soft Forum
Află» Linux Soft» inca un xss in bash.linuxsoft.ro![[Picture 161]](http://linuxsoft.ro/forum/gallery/thumb_83_01_01_10_2_13_59.jpg)
![[Picture 160]](http://linuxsoft.ro/forum/gallery/thumb_64_12_11_09_11_08_44.jpg)
![[Picture 159]](http://linuxsoft.ro/forum/gallery/thumb_55_06_11_09_2_58_29.jpg)
