English
German
French
Spanish
Albanian
Arabic
Dutch
Bosnian
Serbian
Turkish
Czech
Finnish
Hungarian
Italian
Polish
Russian
Estonian
Urdu
News
Links
Sites
Forum
Ranking
Challenges
Downloads
Register
New Sites
pwn.college
PWN.TN
PromptRiddle
PyDéfis
CryptoHack
247CTF
Énigmes À Thématiques
LordofSQLi
New Users
Gaeduck
whitedanchu
vx4
redking0320
Pluel
matbgoi
wrocol
Matryx
59 Online
Guest(x49)
,
gizmore
,
HvT
,
jellyfishsh
,
Pluel
,
rayaseiren
,
RoundLettuce
,
sysfail
,
tehron
,
yezy
Signup
Hide Sidebar
Restrict session to IP
Register
Forgot password
Statistics
47 Sites
181 Challs
8926 Posts
66915 Users
41 donations
0 Patreons
1 Shop
47 Active Sites
World of Wargame
WeChall
TheBlackSheep
Rankk
Electrica
NewbieContest
LOST-Chall
Yashira
BrainQuest
Net-Force
HackThisSite
ThisisLegal.com
elhacker.net
TryThis0ne
TDHack
+Ma's Reversing
Hacker.org
HackBBS
Root-Me
SPOJ
Revolution Elite
W3Challs
Gekkó
Webhacking.kr
Reversing.Kr
SuNiNaTaS
Hacking-Challenges
OverTheWire.org
RedTigers Hackit
Defend the Web
Mod-X
Omega Project
ae27ff
pwnable.kr
RingZer0 Team Online CTF
pwnable.tw
Hack The Box
try to decrypt
MysteryTwister
LordofSQLi
Énigmes À Thématiques
247CTF
CryptoHack
PyDéfis
PromptRiddle
PWN.TN
pwn.college
Top 10 Players
dloser
benito255
jusb3
Caesum
tehron
phoenix1204
lordOric
thefinder
Akorlith
Xaav
Last 20 Activities
yezy
jellyfishsh
syempuna
MSTJ_official
sysfail
obeid2
geldimurat
zhangdw
x0rid86
sisyang
obeid2
pwnguide
livinskull
testis
rayaseiren
Munto
faust
benito255
joshurtree
benito255
Online within 1d
33 Users
Pluel
rayaseiren
sysfail
yezy
RoundLettuce
HvT
gizmore
tehron
jellyfishsh
carlos5ort
MSTJ_official
geldimurat
syempuna
obeid2
Gr33nL10n
x0rid86
annyno096
beehive
mathpseudo
zhangdw
more
WeChall
->
Bug Report
Login Referer XSS
Linking with no challs solved
small typo
quangntenemy
Global Rank: 54
Totalscore: 257208
Posts: 152
Thanks: 127
UpVotes: 157
Registered: 16y 131d
Last Seen: 37d 9h
The User is Offline
Login Referer XSS
Mar 31, 2008 - 09:13:51 (16y 91d)
Google/translate
1
Thank You!
0
Good Post!
1
Bad Post!
link
After logging in the page redirects to the referer url without any validation:
You will get redirected to <script>alert(1)</script> in 5 seconds.
Kender
Global Rank: 73
Totalscore: 213042
Posts: 148
Thanks: 206
UpVotes: 107
Registered: 16y 132d
Last Seen: 2y 103d
The User is Offline
Login Referer XSS
Mar 31, 2008 - 14:48:21 (16y 91d)
Google/translate
1
Thank You!
1
Good Post!
0
Bad Post!
link
Tsktsktsk, that's not how I built it. Gizmooooore!!!!
gizmore
Global Rank: 251
Totalscore: 87259
Posts: 1645
Thanks: 1343
UpVotes: 895
Registered: 16y 132d
Last Seen: 15s
The User is Online
Send EMail to gizmore
Login Referer XSS
Mar 31, 2008 - 18:00:33 (16y 91d)
Google/translate
1
Thank You!
1
Good Post!
0
Bad Post!
link
yayaya,
i am totally guilty for that
the problem has been fixed now.
btw: this xss was a very poor attack vector ;)
The geeks shall inherit the properties and methods of object earth.
tunelko
,
quangntenemy
,
TheHiveMind
,
Z
,
balicocat
,
Ge0
,
samuraiblanco
,
arraez
,
jcquinterov
,
hophuocthinh
,
alfamen2
,
burhanudinn123
,
Ben_Dover
,
stephanduran89
,
braddie0
,
SwolloW
,
dangarbri
,
kalungmas
have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 3501 times.