The Security Industry Authority (SIA) of United Kingdom XSS Vulnerability

2016.07.17
Credit: 4TT4CK3R
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-79

------------------------------------- In The Name Of GOD ------------------------------------- # Exploit Title : The Security Industry Authority (SIA) of United Kingdom XSS Vulnerability # Exploit Author : 4TT4CK3R # Date : 2016/07/17 # Tested On : MacOS , Ubuntu # Category : WebApp # Home Page : http://www.sia.homeoffice.gov.uk # Description : Recently we discovered an Vulberability on the SIA website of united kingdom. SIA = The Security Industry Authority if you want to search any string on the website , this website printed your searched string in the url and you can change it from here. ok .. we can pentesting XSS vulnerability on this website. For doing this pentesting we can using more bypass methods of this vulnerability. For example we searching "4TT4CK3R" string. URL of websited changed to this type : http://www.sia.homeoffice.gov.uk/Pages/SearchResults.aspx?Search=4TT4CK3R ok. now we can running xss scripts with different bypass methods of this vulnerabuility. Therefore if we running the website with this script : http://www.sia.homeoffice.gov.uk/Pages/SearchResults.aspx?Search=%22%22/%3Ehead%3Cscript%3Ealert%28%274TT4CK3R%27%29%3C/script%3Ehead%3C/%22%22 ok. after running this script, website showing to us "4TT4CK3R" message into Message Box :) We can also obtain the required cookies :) http://www.sia.homeoffice.gov.uk/Pages/SearchResults.aspx?Search=%22%22/%3Ehead%3Cscript%3Ealert%28document.cookie%29%3C/script%3Ehead%3C/%22%22 # Discovered by : Dark Killer # We Are : Dark Killer , 4TT4CK3R , RxM_BR , Sina Titan


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2017, cxsecurity.com

 

Back to Top