TUCoPS :: Web :: Specific Sites :: b06-3124.htm

B3ta.com - XSS with cookie disclosure
B3ta.com - XSS with cookie disclosure
B3ta.com - XSS with cookie disclosure


B3ta.com=0D
=0D
Homepage:=0D
http://www.b3ta.com=0D 
=0D
Affected files:=0D
Input boxes of your profile=0D
=0D
=0D
XSS vuln with cookie disclosure via Profile: box.=0D
=0D
Data isn't correctly sanatized before being generated. We can bypass the filters of the site one way by using img tags and converting our javascript to UTF-8 unicode. PoC:=0D
=0D
=0D
=0D
Screenshots:=0D
=0D
http://www.youfucktard.com/xsp/b3ta1.jpg=0D 
http://www.youfucktard.com/xsp/b3ta2.jpg

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH