1. We have moved from vBulletin to XenForo and you are viewing the site in the middle of the move. Though the functional aspect of everything is working fine, we are still working on other changes including the new design on Xenforo.
    Dismiss Notice

simpy.com XSS Vulnerability

Discussion in 'Ethical hacking' started by indiansword, Apr 29, 2009.

  1. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    New XSS vulnerability found on "simpy.com". Again the vulnerability exists in "Search" option. Problem has been notified, awaiting response.

    Exploit Information:
    [+] Founder / Author : Nishant Soni a.k.a IndianSword
    [+] Date:- 30th April 2009
    [+] Criticality :- 7/10
    [+] Fix: Reported to the staff, awaiting response.
    [+] Exploited Links:-
    There is a critical XSS vulnerability in the "Search" option of simpy.com's website. An attacker can exploit the Search Option to get the Cookies which handles the user authentication session. Which means an attacker can create a malicious search and copy the URL and send it to the person whoever he wants to hack.

    Here is an example of malicious URL which will create an alert box.
    Code:
    http://www.simpy.com/user/etomoalibit/search/%253Cscript%253Ealert(%2522TEST%2522)%253C%252Fscript%253E
     

Share This Page