Comments on: Unusual XSS vectors

By: xss2root

xss2root — Fri, 15 Aug 2008 08:23:49 +0000

some filter is based on the HTML syntax,it will remove all attributs like on*,remove some unsafe tags and so on.
the filter just like a browser,and it’s safe much more.

By: Gareth Heyes

Gareth Heyes — Mon, 04 Aug 2008 13:30:11 +0000

@Reelix

1. You’d be getting a XSS on wordpress and not me.
2. You didn’t get XSS
3. This is boring

By: Reelix

Reelix — Mon, 04 Aug 2008 12:37:46 +0000

‘>”>

By: Reelix

Reelix — Mon, 04 Aug 2008 12:37:14 +0000

An XSS attempt

By: Gareth Heyes

Gareth Heyes — Thu, 22 Nov 2007 12:13:18 +0000

@Domber

He should update his cheatsheet then

By: Domber

Domber — Thu, 22 Nov 2007 11:51:31 +0000

> It’s not in RSnake’s cheatsheet after a quick check.

But in his Book
“Cross Site Scripting Attacks: Xss Exploits and Defense”

HTH

By: .mario

.mario — Mon, 19 Nov 2007 17:11:11 +0000

onwhatever

http://www.w3schools.com/dhtml/dhtml_events.asp

MSIE even features dozens of additional ones…

By: Marcin

Marcin — Mon, 19 Nov 2007 16:31:19 +0000

Cool! I wrote a http://www.tssci-security.com/archives/2007/11/15/blacklisting-xss-filter-evasion-and-other-resources/ a couple days ago about using in a site review.. Didn’t even realize there was an element that works the same.

I’m going to have to try the onmouseover attribute next time around.

Mario’s is a nice one too… I’m building up my own little cheat sheet as I go along. Perhaps XSS Cheat Sheet could use an update.

By: Gareth Heyes

Gareth Heyes — Mon, 19 Nov 2007 12:35:39 +0000

Thanks Mario I’ve registered a domain for Hackvertor and once I’ve finished the look behind matching and completed the fuzzing features I’ll start work on a API, which should be cool

By: .mario

.mario — Mon, 19 Nov 2007 12:30:54 +0000

Wow - the issue is new indeed. The rest is just plain browser madness - Firefox in particular.

Incredible… Nice find I await the day when Hackvertor hs an API with itching fingers