So a while ago I asked if I was allowed to play with http://www.bravadogaming.com/ and I got a positive response, I kinda looked around at their custom CMS, didnt see anything immediately available, playing with cookies, changing values here and there, got some SQL errors on http://www.bravadogaming.com/articles/%27%20OR%201=1%20#/ but nothing really spectacular:
I looked around some more, nothing really special, played with register and login, seemed okay.. decided to make an account and see what options I had. Please note I did not even REMOTELY test everything, i was really just messing around. First thing I saw was that people where big on blogs, blogs are linked by categories and blogs in the same categories show similar blogs, heres my first blog:
I started looking into messing with stuff, coming from a bit of a webdev background, immediately hit up some jscript, ie <script>alert(‘AndrewMohawk is AWESOME’);</script>.
Sure enough out the bag, xss is firing.
Even better.. XSS is persistent, not only on my entry, but on the titles being pulled from other articles in the same category (uncategorized)…
So now we have that, now what?
Recent Posts
- PasteLert v2!
- Joomla 2.51 Blind SQL Attack
- FireBridges, proxies that burn!
- Pastebin DoS + PasteLert
- Automated Water System
What?
Tag cloud
airodump-ng
AlchemyAPI
alerting
Arduino
Badges
Blind
botnet
c++
client side attack
cross site scripting
denial of service
facebook
facebookGraphAPI
facial recognition
google
google earth
GPS
GraphAPI
information leak
IPCam
Joomla
LCD
LED
Maltego
mIRC
MusicBee
NER
NLP
pastebin
php
proxy
Security
Serial
Servo
slowloris
Soil Moisture
Soil Sensor
SQL injection
tcp
Timing Attack
VMWare
Water Pump
Webcam
xss
ZACon Arduino (2)
Coding (20)
General (6)
Security (13)
Social (10)
WP Cumulus Flash tag cloud by Roy Tanck requires Flash Player 9 or better.