English
German
French
Spanish
Albanian
Arabic
Dutch
Bosnian
Serbian
Turkish
Czech
Finnish
Hungarian
Italian
Polish
Russian
Estonian
Urdu
News
Links
Sites
Forum
Ranking
Challenges
Downloads
Register
New Sites
pwn.college
PWN.TN
PromptRiddle
PyDéfis
CryptoHack
247CTF
Énigmes À Thématiques
LordofSQLi
New Users
falico
ak4m1m3
manowore
frank20a
gnd_z3R0
oogiijackod01
secretsika
choedev
81 Online
Guest(x74)
,
gnd_z3R0
,
hanto
,
obeid2
,
tev27
,
xseris
Signup
Hide Sidebar
Restrict session to IP
Register
Forgot password
Statistics
47 Sites
180 Challs
8871 Posts
66410 Users
41 donations
0 Patreons
1 Shop
47 Active Sites
World of Wargame
WeChall
TheBlackSheep
Rankk
Electrica
NewbieContest
LOST-Chall
Yashira
BrainQuest
Net-Force
HackThisSite
ThisisLegal.com
elhacker.net
TryThis0ne
TDHack
+Ma's Reversing
Hacker.org
HackBBS
Root-Me
SPOJ
Revolution Elite
W3Challs
Gekkó
Webhacking.kr
Reversing.Kr
SuNiNaTaS
Hacking-Challenges
OverTheWire.org
RedTigers Hackit
Defend the Web
Mod-X
Omega Project
ae27ff
pwnable.kr
RingZer0 Team Online CTF
pwnable.tw
Hack The Box
try to decrypt
MysteryTwister
LordofSQLi
Énigmes À Thématiques
247CTF
CryptoHack
PyDéfis
PromptRiddle
PWN.TN
pwn.college
Top 10 Players
dloser
benito255
jusb3
Caesum
tehron
phoenix1204
lordOric
thefinder
Akorlith
Xaav
Last 20 Activities
gnd_z3R0
obeid2
nowsh
tev27
obeid2
healer_hack
ak4m1m3
r0d
hanto
hanto
prettygood
falico
chimera
alexix
GH05T
GH05T
tarskpean
rayaseiren
faust
rayaseiren
Online within 1d
34 Users
tev27
hanto
gnd_z3R0
xseris
obeid2
p1utoze
codeiomagicman
p0lar
cheerfulbull
nowsh
ak4m1m3
rayaseiren
healer_hack
chimera
r0d
prettygood
ncwoody
flouris
DrGruff
falico
more
WeChall
->
Bug Report
Login Referer XSS
Linking with no challs solved
small typo
quangntenemy
Global Rank: 54
Totalscore: 257211
Posts: 152
Thanks: 127
UpVotes: 157
Registered: 16y 67d
Last Seen: 22d 1h
The User is Offline
Login Referer XSS
Mar 31, 2008 - 09:13:51 (16y 27d)
Google/translate
1
Thank You!
0
Good Post!
1
Bad Post!
link
After logging in the page redirects to the referer url without any validation:
You will get redirected to <script>alert(1)</script> in 5 seconds.
Kender
Global Rank: 73
Totalscore: 213040
Posts: 148
Thanks: 206
UpVotes: 107
Registered: 16y 68d
Last Seen: 2y 39d
The User is Offline
Login Referer XSS
Mar 31, 2008 - 14:48:21 (16y 26d)
Google/translate
1
Thank You!
1
Good Post!
0
Bad Post!
link
Tsktsktsk, that's not how I built it. Gizmooooore!!!!
gizmore
Global Rank: 253
Totalscore: 87267
Posts: 1638
Thanks: 1338
UpVotes: 886
Registered: 16y 68d
Last Seen: 1d 15h
The User is Offline
Send EMail to gizmore
Login Referer XSS
Mar 31, 2008 - 18:00:33 (16y 26d)
Google/translate
1
Thank You!
1
Good Post!
0
Bad Post!
link
yayaya,
i am totally guilty for that
the problem has been fixed now.
btw: this xss was a very poor attack vector ;)
The geeks shall inherit the properties and methods of object earth.
tunelko
,
quangntenemy
,
TheHiveMind
,
Z
,
balicocat
,
Ge0
,
samuraiblanco
,
arraez
,
jcquinterov
,
hophuocthinh
,
alfamen2
,
burhanudinn123
,
Ben_Dover
,
stephanduran89
,
braddie0
,
JanLitwin17
,
SwolloW
,
dangarbri
have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 3435 times.