Blogtitude in Berita Harian & Utusan Online
July 8th, 2007 | by tk2 |W00t! See it yourself.
Berita Harian. Utusan Online.
Actually this is an example of XSS vuln that I found when I was reading the articles at Berita Harian. The site will load a gif picture, depends on the word after ‘mysec’ variable is this URL
http://www.bharian.com.my/m/BHarian/Section/index_html?mysec=Keluarga
If I change the word Keluarga to ‘Hello’ it will try to load Hello.gif in the picture library which is not exist. So nothing will come out.
How if I change the word ‘Keluarga’ to “> ?
The <img src> tag will be closed and I’ll able to write anything I want. Example:
http://www.bharian.com.my/m/BHarian/Section/index_html?mysec=”><h1>Hello</h1>
In Utusan,the vuln is in the title tag. The concept is pretty much the same. Now have fun writing your own articles!
3 Responses to “Blogtitude in Berita Harian & Utusan Online”
By flisterz on Jul 9, 2007 | Reply
lor…ingtkan betul
By Bat on Jul 9, 2007 | Reply
haha..terpedaya aku tengok tajuk entri dalam blogtitude tadi..Tapi tak sangka lak jadi camni..
Good info bro.. =) Nanti aku nak cuba2..