possible attack with open social urls

mauricecanoPremium

1327 posts

Would like to add to the list that possible attack is given for open social urls as well:

Total impact: 22
Affected tags: xss, csrf, sqli, id, lfi

Variable: REQUEST.request | Value: {\&quot;context\&quot;:{\&quot;country\&quot;:\&quot;US\&quot;,\&quot;language\&quot;:\&quot;en\&quot;,\&quot;view\&quot;:\&quot;default\&quot;,\&quot;container\&quot;:\&quot;partuza\&quot;},\&quot;gadgets\&quot;:[{\&quot;url\&quot;:\&quot;http:\\/\\/jukebox.mentez.com\\/hi5\\/jukebox.xml\&quot;,\&quot;moduleId\&quot;:\&quot;1\&quot;}]}
Impact: 11 | Tags: xss, csrf, sqli, id, lfi
Description: Detects self-executing JavaScript functions | Tags: xss, csrf | ID: 8
Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43

Variable: POST.request | Value: {\&quot;context\&quot;:{\&quot;country\&quot;:\&quot;US\&quot;,\&quot;language\&quot;:\&quot;en\&quot;,\&quot;view\&quot;:\&quot;default\&quot;,\&quot;container\&quot;:\&quot;partuza\&quot;},\&quot;gadgets\&quot;:[{\&quot;url\&quot;:\&quot;http:\\/\\/jukebox.mentez.com\\/hi5\\/jukebox.xml\&quot;,\&quot;moduleId\&quot;:\&quot;1\&quot;}]}
Impact: 11 | Tags: xss, csrf, sqli, id, lfi
Description: Detects self-executing JavaScript functions | Tags: xss, csrf | ID: 8
Description: Detects classic SQL injection probings 2/2 | Tags: sqli, id, lfi | ID: 43

Quote · 18 Nov 2009

AlexTNavigator

6101 posts

http://www.boonex.com/trac/dolphin/ticket/1467

Rules → http://www.boonex.com/terms

Quote · 19 Nov 2009

Reply ›

possible attack with open social urls

Blogs

Help

Product

Company