EvilZone

Hacking and Security => Hacking and Security => Topic started by: darkhunter on February 09, 2013, 05:33:47 PM

Title: problem with XSS :'(
Post by: darkhunter on February 09, 2013, 05:33:47 PM

Hi guys i am new to the forum, I have a little problem with XSS, a site has a search form where I tested various XSS, then I noticed these signs in encoding utf-8 "<> /", there is a way to bypass this problem? thanks in advance for your answers ;)

Title: Re: problem with XSS :'(
Post by: vezzy on February 10, 2013, 02:02:54 AM

XSS filter evasion will be of use to you. Look it up.

Title: Re: problem with XSS :'(
Post by: darkhunter on February 10, 2013, 10:57:54 AM

thanks for the reply, unfortunately I'm not very good with XSS, you may give me an example of how to escape from these types of filters? thanks in advance ;)

Title: Re: problem with XSS :'(
Post by: Snayler on February 10, 2013, 12:37:24 PM

Quote from: darkhunter on February 10, 2013, 10:57:54 AM

thanks for the reply, unfortunately I'm not very good with XSS, you may give me an example of how to escape from these types of filters? thanks in advance ;)

Kurt Cobain would say you smell like spoon spirit...

Title: Re: problem with XSS :'(
Post by: Phage on February 10, 2013, 12:52:31 PM

I have some filter evasion in my XSS tutorial.

http://evilzone.org/tutorials/%28tut%29-basic-xss-tutorial-%28tut%29

Title: Re: problem with XSS :'(
Post by: darkhunter on February 10, 2013, 02:52:37 PM

thanks Phage