Crypto World (cryptoworld.is) XSS
#1
Code:
https://wiki.cryptoworld.is/thumb.php?f=x%23<body%09onload=confirm('greysec')>
Reply
#2
Very interesting. It appears that hackforums has the same type of vulnerability on the same subdomain. I think it's safe to assume that mediawiki is not completely safe from XSS.
Reply
#3
(12-26-2015, 08:37 PM)Insider Wrote: Very interesting. It appears that hackforums has the same type of vulnerability on the same subdomain. I think it's safe to assume that mediawiki is not completely safe from XSS.

Correct. This is a XSS vulnerability in MediaWiki.
Reply
#4
Thanks for this.
But to be honest there is nothing on the Wiki.
Also from what I can tell it's not a real dire situation.
However; thanks for letting us know Smile

~ Network / CryptoWorld

(12-26-2015, 08:39 PM)zeroday Wrote:
(12-26-2015, 08:37 PM)Insider Wrote: Very interesting. It appears that hackforums has the same type of vulnerability on the same subdomain. I think it's safe to assume that mediawiki is not completely safe from XSS.

Correct. This is a XSS vulnerability in MediaWiki.

Also I would say this is not a real server threatening XSS.
It's pretty harmless.
Code:
https://wiki.cryptoworld.is/thumb.php?f=nothing%20here

It also ignores any type of tags you try to put in.
Thanks for the share though.

~ Network / CryptoWorld
Reply
#5
(12-26-2015, 10:34 PM)Network Wrote: Thanks for this.
But to be honest there is nothing on the Wiki.
Also from what I can tell it's not a real dire situation.
However; thanks for letting us know Smile

~ Network / CryptoWorld

(12-26-2015, 08:39 PM)zeroday Wrote:
(12-26-2015, 08:37 PM)Insider Wrote: Very interesting. It appears that hackforums has the same type of vulnerability on the same subdomain. I think it's safe to assume that mediawiki is not completely safe from XSS.

Correct. This is a XSS vulnerability in MediaWiki.

Also I would say this is not a real server threatening XSS.
It's pretty harmless.
Code:
https://wiki.cryptoworld.is/thumb.php?f=nothing%20here

It also ignores any type of tags you try to put in.
Thanks for the share though.

~ Network / CryptoWorld

It's completely disagree that it's harmless. It really depends on the site in question but this vulnerability could be put to many effective uses if you think creatively, same goes for any reflective xss tbh.

And yea this is a vulnerability in outdated mediawiki installs, some sites that are/were vulnerable: owasp, openoffice, osticket, unrealircd, secondlife, adobe, gimp, wikihow, mibbit, dreamhost, creative commons, whmcs and more

And it isn't ignoring the tags you enter you just need to preceed them with %23
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [Tutorial] XSS through Exif headers Insider 1 544 06-16-2020, 11:51 AM
Last Post: LaZr4us
  Guide to XSS (Examples included) NO-OP 3 12,374 04-29-2019, 12:44 PM
Last Post: mhiats37
  [PoC] RunBox.com x MailChimp.com - Stored XSS Vulnerabilities (Bug Bounty Hunting) Daisuke Dan 3 5,754 04-24-2019, 08:47 PM
Last Post: thunder
  Exploiting Reflective XSS (Post) Insider 1 4,181 04-24-2019, 08:32 PM
Last Post: thunder