Play Legend of the Green Dragon Play BNT Play Promisance Play Alien Assault Traders Play Quantum Star Play Some Chess  
   D3jsp RPGRPG   ArcadeArcade   Multiplayer PokerD3Jsp Poker   FAQ/RulesFAQ/Rules  SearchSearch  MemberlistMemberlist   UsergroupsUsergroups   ChatroomLive Chat   Log inLog in   RegisterRegister 

Very dangerous xss, even displays in the profil

 
Post new topic  Reply to topic  d3jsp Forum Index -> Arcade Discussion
View previous topic :: View next topic ::  


Author Message
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#1 Posted: 13 Oct 2011 06:03 am    Post subject: Very dangerous xss, even displays in the profil Reply with quote

http://www.d3jsp.org/profile.php?mode=viewprofile&u=7149

xss in the name field of the character

could be used to redirect people to another webpage, read their cookies and redirect them back here

they wouldnt even notice you got their cookies

with their cookies you can log in their account and do whatever you want


Last edited by Dragonelf on 13 Oct 2011 06:48 am; edited 1 time in total
Back to top
View user's profile Send private message


Jay


Group: Scammer
Joined: 21 Oct 2008
Donor:
Posts: 1823
Gold: Locked


us.gif

Status:
Warn:
Reputation: 20    


<b><font color=red>Scammer</font></b>

Post#2 Posted: 14 Oct 2011 06:00 pm    Post subject: Reply with quote

i see this hasnt been fixed yet? or has it?
_____________________
[img]https://imgur.com/XAmdaAZ[/img]
PM Me if you have any questions
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#3 Posted: 14 Oct 2011 06:15 pm    Post subject: Reply with quote

not yet, but tramway pmed me his working on that
Back to top
View user's profile Send private message
Jay


Group: Scammer
Joined: 21 Oct 2008
Donor:
Posts: 1823
Gold: Locked


us.gif

Status:
Warn:
Reputation: 20    


<b><font color=red>Scammer</font></b>

Post#4 Posted: 14 Oct 2011 06:17 pm    Post subject: Reply with quote

ahh cool, thanks for reporting that, that could of done some damage lol

Last edited by Jay on 14 Oct 2011 06:17 pm; edited 1 time in total

_____________________
[img]https://imgur.com/XAmdaAZ[/img]
PM Me if you have any questions
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#5 Posted: 14 Oct 2011 06:21 pm    Post subject: Reply with quote

Jay wrote:
ahh cool, thanks for reporting that, that could of done some damage lol


1. create new account
2. make the cookiestealer in ur profile
3. pm mod "Hey my profile is bugged can u tell me whats wrong?"
4. F5ing my page till I got his cookie
5. Delete the cookiestealer in my profile
6. Log in mods account with proxy
7. Wait untill he logs off
8. Scam someone
9. Ban the victim

Repeat step 8-9 till acc get banned / pw changed

10. Get next mod account

Repeat 8-10 till the hole get fixed

------

Guess I wouldve been able to make some k fg with that derisive
Back to top
View user's profile Send private message
Jay


Group: Scammer
Joined: 21 Oct 2008
Donor:
Posts: 1823
Gold: Locked


us.gif

Status:
Warn:
Reputation: 20    


<b><font color=red>Scammer</font></b>

Post#6 Posted: 14 Oct 2011 08:34 pm    Post subject: Reply with quote

haha kinda seems you put some thought into this :p
_____________________
[img]https://imgur.com/XAmdaAZ[/img]
PM Me if you have any questions
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#7 Posted: 14 Oct 2011 08:47 pm    Post subject: Reply with quote

yes but I am a white knight and report stuff like that instead of getting $$$$
Back to top
View user's profile Send private message
Jay


Group: Scammer
Joined: 21 Oct 2008
Donor:
Posts: 1823
Gold: Locked


us.gif

Status:
Warn:
Reputation: 20    


<b><font color=red>Scammer</font></b>

Post#8 Posted: 14 Oct 2011 08:49 pm    Post subject: Reply with quote

only way to live!
_____________________
[img]https://imgur.com/XAmdaAZ[/img]
PM Me if you have any questions
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger
NothingButaPeanut


Group: Members
Joined: 05 Jun 2011
Posts: 643
Gold: 354.20
Clan: Honor


Status:
Warn:
Reputation: 43    



Post#9 Posted: 15 Oct 2011 01:06 pm    Post subject: Reply with quote

well, hopefully this site uses more than a cookie when a user clicks "remember me"...
Maybe an ip check or something to prevent people from hacking an account with only the cookie.
Back to top
View user's profile Send private message
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#10 Posted: 15 Oct 2011 01:53 pm    Post subject: Reply with quote

NothingButaPeanut wrote:
well, hopefully this site uses more than a cookie when a user clicks "remember me"...
Maybe an ip check or something to prevent people from hacking an account with only the cookie.


The ip changes every 24 hours usually

There isnt more than a cookie to recognice you

It would even work on ebay, if ebay had a xss hole
Back to top
View user's profile Send private message
NothingButaPeanut


Group: Members
Joined: 05 Jun 2011
Posts: 643
Gold: 354.20
Clan: Honor


Status:
Warn:
Reputation: 43    



Post#11 Posted: 15 Oct 2011 03:03 pm    Post subject: Reply with quote

well im sure they log the ip, location area, isp or something and store it in a db. Then match the login attempt/cookie check with the last known login?
Is a cookie seriously all that's required?
Back to top
View user's profile Send private message
NothingButaPeanut


Group: Members
Joined: 05 Jun 2011
Posts: 643
Gold: 354.20
Clan: Honor


Status:
Warn:
Reputation: 43    



Post#12 Posted: 15 Oct 2011 03:05 pm    Post subject: Reply with quote

bleh doublepost

Last edited by NothingButaPeanut on 15 Oct 2011 03:05 pm; edited 1 time in total
Back to top
View user's profile Send private message
Dragonelf


Group: Retired Moderators
Joined: 11 Mar 2009
Donor:
Posts: 4584
Gold: 63.50
Clan: Legends


gm.gif

Status:
Warn:
Reputation: 154    


Retired Moderators

Post#13 Posted: 15 Oct 2011 05:09 pm    Post subject: Reply with quote

NothingButaPeanut wrote:
well im sure they log the ip, location area, isp or something and store it in a db. Then match the login attempt/cookie check with the last known login?
Is a cookie seriously all that's required?


They dont do it, beacause it would be stupid

1. you could log in from a friend
2. from a internetcafee
3. from your vacation

etc.

cookie is all whats required
Back to top
View user's profile Send private message
Viscosity


Group: Scammer
Joined: 07 Jul 2011
Donor:
Posts: 1000
Gold: Locked


ca.gif

Status:
Warn:
Reputation: 26    


<b><font color=red>Scammer</font></b>

Post#14 Posted: 15 Oct 2011 07:21 pm    Post subject: Reply with quote

Hi toy ou too!
_____________________

Back to top
View user's profile Send private message MSN Messenger
Display posts from previous:   
1 Members: Guest
Post new topic  Reply to topic  d3jsp Forum Index -> Arcade Discussion All times are GMT - 4 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum



D3jsp is proudly powered by phpBB © 2.0
Theme and Forum by tramway