FarSe Posted October 28, 2012 Report Share Posted October 28, 2012 Umblam azi in webmaster ca sa vad ce mai e cu site-urile mele,si mi-am incercat putin norocu in xss si am dat peste asta:http://i.imgur.com/NiM5y.jpgCiudat e cand incerc cu alt vector,apare alta eroare o.o :http://i.imgur.com/yXhx3.jpgPagina nu isi da load,dar apare acea eroare cu "Refused to execute a JavaScript script. Source code of script found within request."Primesc ceva pe el sau ma injura ca le-am luat din timp? Quote Link to comment Share on other sites More sharing options...
UnUser Posted October 28, 2012 Report Share Posted October 28, 2012 Nu pierzi nimic daca le trimiti un mail ! Quote Link to comment Share on other sites More sharing options...
Nytro Posted October 28, 2012 Report Share Posted October 28, 2012 Pff, sa fie oare protectia impotriva XSS? Si sa te anunte ca nu e executat? Quote Link to comment Share on other sites More sharing options...
dekeeu Posted October 28, 2012 Report Share Posted October 28, 2012 Gandeste-te si tu cum ar suna mail-ul tau catre ei :"Salut . Am gasit ceva, nu stiu exact ce e , dar e scris cu rosu si scrie ceva de javascript. Daca e vulnerabilitate va rog sa ma treceti in Hall Of Fame ca Haxxxor2013 daca nu , va multumesc ca am avut aceasta discutie inteligenta si voi fi atent in continuare la scrisul cu rosu." .Are you fucking kidding me ? Quote Link to comment Share on other sites More sharing options...
FarSe Posted October 28, 2012 Author Report Share Posted October 28, 2012 (edited) @Toshib4 : mersi de sarcasm,dar eu vroiam sa stiu daca e un xss/bug valid sau altceva.Oricum,mersi.@Nytro : mai mult ca sigur(in firefox isi da load pagina in continuu)... Edited October 28, 2012 by FarSe Quote Link to comment Share on other sites More sharing options...
bcman Posted October 28, 2012 Report Share Posted October 28, 2012 @Toshib4 : mersi de sarcasm,dar eu vroiam sa stiu daca e un xss/bug valid sau altceva.Oricum,mersi.Mai cite?te o dat? ce a scris Nytro. Apoi ia-?i 15 minute ?i gânde?te-te la ce a scris. Dup? vreo jumate de or?, d? replay, s? vedem dac? ai în?eles. Quote Link to comment Share on other sites More sharing options...
adoamneia Posted October 28, 2012 Report Share Posted October 28, 2012 Chrome-ul iti blocheaza scriptul. Poti incerca sa bagi xss oriunde (in alte site-uri chiar si vulnerabile) si nu ti-l va executa. Incearca aceiasi chestie cu firefox. Quote Link to comment Share on other sites More sharing options...