HackDig : Dig high-quality web security articles for hacker

Bypassing DOMPurify with mXSS

I noticed DOMPurify would let you use the title tag when injecting a self closing SVG. Normally it blocks title outside of SVG however using the self closing trick you could bypass that restriction. <svg/><title> Injecting the title tag is important because it mutates, as I’ve tweeted about in the past. In order for the mXSS to be effectiv
Publish At:2019-09-19 17:40 | Read:42 | Comments:0 | Tags: Xss

Stored XSS, and SSRF in Google using the Dataset Publishing Language

“Those who rule data will rule the entire world.” - 孫正義TLDR; Crafting Dataset Publishing Language bundles to get stored XSS in the context of www.google.com, and using the DSPL remote sources functionality to access local services (SSRF).The Google Public Data Explorer is a tool to make large datasets easy to explore and visualize. eg., Visualizing Hea
Publish At:2019-09-19 14:55 | Read:83 | Comments:0 | Tags:dspl Xss

XSS Auditor no more part of Google Chrome

Yes, you heard correct Google Chromium devs announced the news about XSS auditor. The XSS auditor time and again bypassed by the client security researcher to execute the malicious javascript, and this may be the primary reason to be deprecated and removed from the Google Chrome browser. The anti-cross site scripting engine (XSS auditor) is not cove
Publish At:2019-09-19 14:11 | Read:71 | Comments:0 | Tags:News XSS Auditor Xss

[CVE-2017-15867] Multiple Cross-Site Scripting (XSS) vulnerabilities in User Login History Wordpress Plugin

Product: User Login History Wordpress Plugin - https://wordpress.org/plugins/user-login-history/Vendor: Er Faiyaz AlamTested version: 1.5.2CVE ID: CVE-2017-15867** CVE description **Multiple cross-site scripting (XSS) vulnerabilities in the user-login-history plugin through 1.5.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via
Publish At:2017-10-31 07:10 | Read:2340 | Comments:0 | Tags: Xss

Researcher spotted flaws in the web-based version of popular Sarahah app

A security researcher discovered a number of embarrassing vulnerabilities in the popular anonymous feedback app Sarahah. The anonymous feedback app Sarahah makes the headlines once again, according to the according to security researcher Scott Helme, the web-based version of the app is plagued with security flaws. Sarahah mobile app allows users to receive a
Publish At:2017-10-24 13:20 | Read:1858 | Comments:0 | Tags:Breaking News Hacking CSRF mobile app Sarahah web applicatio

CVE-2017-9292, Lansweeper XSS vulnerability

=============================================- Release date: October 05th, 2017- Discovered by: Giovanni Cerrato, Giovanni Guido and BackBox team- Severity: Medium============================================= I. VULNERABILITY-------------------------Lansweeper XSS vulnerability. II. INTRODUCTION-------------------------Lansweeper an Asset Management and Netw
Publish At:2017-10-07 06:20 | Read:5687 | Comments:0 | Tags: Xss Vulnerability

CSRF/XSS in Content Audit allowing an unauthenticated attacker to do almost anything an admin can (WordPress plugin)

Details================Software: Content AuditVersion: 1.9.1Homepage: https://wordpress.org/plugins/content-audit/Advisory report: https://security.dxw.com/advisories/csrf-xss-content-audit/CVE: Awaiting assignmentCVSS: 5.8 (Medium; AV:N/AC:M/Au:N/C:P/I:P/A:N)Description================CSRF/XSS in Content Audit allowing an unauthenticated attacker to do almo
Publish At:2017-09-27 05:40 | Read:2084 | Comments:0 | Tags: Xss Csrf

Expert disclosed 10 zero-day vulnerabilities in D-Link DIR 850L wireless routers

The security researcher Pierre Kim has discovered ten critical zero-day vulnerabilities in D-Link DIR 850L routers and invites users to stop using them. The security researcher Pierre Kim has discovered ten critical zero-day vulnerabilities in routers from networking equipment manufacturer D-Link that open owners to cyber attacks. The flawed devices are the
Publish At:2017-09-11 20:30 | Read:3090 | Comments:0 | Tags:Breaking News Hacking backdoor D-Link DIR 850L wireless rout

EE 4GEE Multiple Security Vulnerabilities Advisory (CSRF/Stored XSS/JSONP)

EE 4GEE Wireless Router - Multiple Security Vulnerabilities Advisory-------------------------------------------------Hardware Version/Model: 4GEE WiFi MBB (EE60VB-2AE8G83).Vulnerable Software Version: EE60_00_05.00_25.Patched Software Version: EE60_00_05.00_31.Product URL:https://shop.ee.co.uk/dongles/pay-monthly-mobile-broadband/4gee-wifi/detailsProof of Co
Publish At:2017-09-08 11:20 | Read:2054 | Comments:0 | Tags: Xss Csrf

Wibu Systems AG CodeMeter 6.50 - Persistent XSS Vulnerability

Document Title:===============Wibu Systems AG CodeMeter 6.50 - Persistent XSS VulnerabilityReferences (Source):====================https://www.vulnerability-lab.com/get_content.php?id=2074ID: FB49498Acknowledgements: https://www.flickr.com/photos/vulnerabilitylab/36912680045/http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-13754CVE-ID:=======CVE-2017
Publish At:2017-09-04 13:15 | Read:2630 | Comments:0 | Tags: Xss Vulnerability

CVE-2017-13671 - MISP Stored XSS

Hi list,We have found a Stored Cross-site scripting vulnerability in MISP (Malware Information Sharing Platform & Threat Sharing).[Description]Cross-site scripting (XSS) vulnerability in the comments of the events within MISP before 2.4.79 allows remoteattackers to inject arbitrary web script or HTML via a POST request.-----------------------------------
Publish At:2017-08-29 08:40 | Read:2792 | Comments:0 | Tags: Xss

OWASP Top 10 : Cross-Site Scripting #3 Bad JavaScript Imports

Need to include cross domain resources: The ever growing need of giving a rich user experience to website visitors have made the need for browsers to include cross origin resource. Sometimes these resources can be data, a frame, an image or JavaScript. For example: A website http://example.com can have the following cross origin resources: Data from websit
Publish At:2017-08-28 03:30 | Read:3683 | Comments:0 | Tags:OWASP SecureLayer7 Lab Bad JavaScript Imports Client Side At

BlackBoard LMS (9.1.140152.0) Stored XSS/Arbitrary File Upload

Document Title:===============BlackBoard LMS 9.1 (9.1.140152.0) Stored XSS/Arbitrary File UploadProduct Description:===============The Learning Management System has changed the way students andeducators interact.Blackboard's LMS solutions offer much more than simple, classroom interaction,they support the entire education experience enabling educators
Publish At:2017-08-23 05:20 | Read:2073 | Comments:0 | Tags: Xss

OWASP Top 10 #3: Cross-Site Scripting (XSS)

Cross-Site ScriptingCross-site scripting (XSS) attacks involved the injection of malicious code into trusted websites. One of the traditional uses of XSS is a hacker stealing session cookies in order to impersonate another user. Lately, it has been the malicious act used to spread malware, deface websites, and phish for useful credentials. It occurs wh
Publish At:2017-08-17 18:35 | Read:2760 | Comments:0 | Tags:Security Awareness OWASP OWASP Top 10 Xss

What should enterprises know about how a stored XSS works

Cross-site scripting, or XSS, is a web application attack that attempts to inject malicious code into a vulnerable application. The application isn't at risk during this attack; XSS' main purpose is to exploit the account or user attempting to use the application.There are a few different types of XSS -- such as stored, reflective and others -- but in this a
Publish At:2017-08-17 08:58 | Read:1811 | Comments:0 | Tags: Xss


Share high-quality web security related articles with you:)


Tag Cloud