Jump to content
Versus71

XSS, SQL Injection and Fuzzing Barcode [Cheat Sheet]

Recommended Posts

Posted

ibsbZhaKcjvT97.PNG

Because of the nature of barcodes, developers may not be expecting attacks from that vector and thus don't sanitize their inputs properly. I had previously written "XSS, Command and SQL Injection vectors: Beyond the Form" so this was right up my alley. I constructed this page that lets you make barcodes in Code 93, Code 39, Code 39ext and Code 128A, B and C.

Link:

http://www.irongeek.com/xss-sql-injection-fuzzing-barcode-generator.php

Posted

chesti asta este de cand eram eu tanar...

tot aici se incadreaza si faza cand lipesti pe produse din supermarket barcode cu functia de reset settings pentru aparatele de citit coduri.

aparatele alea pentru cei care nu stiu se programeaza prin intermediul unui sheet plin cu barcode-uri care se scaneaza pe rand in functie de cum vrei sa se comporte pistolul.

Posted (edited)

Daca va vine sa credeti ieri seara inainte sa ma culc fix la asta m-am gandit.

Dar nu stiu daca aparatul recunoaste encodingul adica sa poata citi numai cifre iar caracterele si simbolurile sa nu le poata recunoaste.

Edited by robyyxx

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...