[XSS] Challenge

[dancezar]

Target:htxp://www.getmeontop.com/search.php?query=&search=1

Dificultate:Easy

Tasks:

-Trebuie sa faceti un vector sa functioneze in acelasi timp pe IE 8 si Chrome

Reguli:

-Nu dati hinturi

-Postati o imagine cenzurata cu cu cele 2 browsere

-Trimiteti sintaxa prin PM

Proof:

Chrome:

http://s21.postimg.org/o43oqrn3b/xss_ch_ch.png

Ie:

http://s8.postimg.org/6ft1coylw/xss_ch_ch2.jpg

Solveri:

- akkiliON

- FoxKids

-

-

-

-

-

Edited December 14, 2013 by danyweb09

[akkiliON]

Ai P.M !

Edited December 11, 2013 by akkiliON

[DarkPanda]

Oppss! Am folosit firefox din obisnuinta

[FoxKids]

Mozila Firefox

Internet explorer

Google Chorme

Ai pm...

Edited December 14, 2013 by FoxKids

[dancezar]

Mozila Firefox

Internet explorer

Google Chorme

Ai pm...

E bine trebuie user interaction dar merge

[snq]

Impossible to do without some weird behavior in that query parameter.

There is no chance either of you guys bypassed webkit xss auditor or internet explorer's xss filter.

[dancezar]

Impossible to do without some weird behavior in that query parameter.

There is no chance either of you guys bypassed webkit xss auditor or internet explorer's xss filter.

me ,akkilion,Fox we just did it why is impossible?

[snq]

Ok, prove me wrong.

xss this get parameter:

efukt.com/?search=<xss vector goes here>.

If it works on chrome or IE, i'll take back my words and chop off my balls.

As i predicted, weird behavior in GET parameter (just received pm from danyweb), not a bypass in either of the xss filters.

It's ok .

Edited December 14, 2013 by snq

[salaheddin]

Edited December 17, 2013 by salaheddin

[manxten]

Oppss! Am folosit firefox din obisnuinta

voi nu vedeti ca trebuie sa faceti sa mearga pe chrome si explorer? sau vreti sa dovediti ca sunteti mari "hec?ri"

[dancezar]

Cerinta e foarte clara Trebuie sa faceti un vector sa functioneze in acelasi timp pe IE 8 si Chrome

[Goke]

pe google chrome chiar nu pot

[shwekayin]

Thanx for challenge

[dancezar]

Thanx for challenge

Read the rulles please,if works on IE and Chrome too send me the syntax

[dancezar]

Citeste complet regurile

"Trebuie sa faceti un vector sa functioneze in acelasi timp pe IE 8 si Chrome"

[Fed0t]

Le incerci pe toate pe chrome din lista asta si esti hacker

https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Embedded_newline_to_break_up_XSS

[dancezar]

Le incerci pe toate pe chrome din lista asta si esti hacker

https://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Embedded_newline_to_break_up_XSS

Este vorba despre altceva , site-ul ala are filtru pe un caracter , cu ajutorul acelui filtru poti face "bypass" la auditorul de pe chrome si IE. Plm <script>alert(1);</script> e mult prea simplu.

[Fed0t]

L-am facut pe firefox dar pe chrome nu am reusit si nu am rabdare! GG

[dancezar]

HINT:hxxp://www.getmeontop.com/search.php?query=organic+search+engine+ranking&search=1

Si tineti cont de ce am spus mai sus

[appo]

Cu Google Chrome nu reusesc

[dancezar]

CLOSED

Orice pm primit nu se v-a mai lua in considerare.

Rezolvarea era foarte simpla!

Am dat hintu intr-un post mai sus

••••••>GetMeOnTop Search for organic search engine ranking

Daca bagati " este eliminat(Inlocuit cu NULL) ,va puteti folosi de el ca faceti bypass la xss auditor.

Practic daca introduceti <scri"pt> filtrul v-a elimina " si v-a deveni <script>.

••••••>GetMeOnTop Search for organic search engine ranking<scri"pt>alert(1)</script>

Si astfel v-a functiona pe ambele browsere!@

Edited April 27, 2014 by danyweb09