Xss

Results 1 to 6 of 6
  1. #1
    Evil Scottish Overlord Joopie is offline
    LegendRank
    Jun 2010 Join Date
    The NetherlandsLocation
    2,753Posts

    Xss

    Xss
    The following thread almost looks like XSS. http://forum.ragezone.com/f353/fonts...fonts-1194592/



    Join Our RaGEZONE Discord Now!


    Send me a PM | send me a mail

    Still waiting for XenForo to hit RaGEZONE.


  2. #2
    Super Moderator Biesmen is online now
    Super ModRank
    Apr 2007 Join Date
    2,472Posts

    Re: Xss

    I cannot reproduce the error. Are you sure it isn't some browser cache issue?
    Forum Rules | Account Support | Subscribe
    RaGEZONE Facebook

    "The reason why people give up so fast is because they tend to look at how far they still have to go, instead of how far they have gotten."

  3. #3
    Evil Scottish Overlord Joopie is offline
    LegendRank
    Jun 2010 Join Date
    The NetherlandsLocation
    2,753Posts

    Re: Xss

    Quote Originally Posted by Biesmen View Post
    I cannot reproduce the error. Are you sure it isn't some browser cache issue?
    It seems like Ketchup fixed the issue. Non the less it was possible to inject html and stuff because it fucked up the entire html. It was not cache related, nor browser. I tested it on multiple browsers and machines.


    Join Our RaGEZONE Discord Now!


    Send me a PM | send me a mail

    Still waiting for XenForo to hit RaGEZONE.

  4. #4
    Super Moderator Biesmen is online now
    Super ModRank
    Apr 2007 Join Date
    2,472Posts

    Re: Xss

    I checked the history. The BB code tags ruined the styling, no HTML or JS code was injected in the thread. It looks like the HTML tags were not closed properly by vBulletin while using nested BB code tags.
    Forum Rules | Account Support | Subscribe
    RaGEZONE Facebook

    "The reason why people give up so fast is because they tend to look at how far they still have to go, instead of how far they have gotten."

  5. #5
    Evil Scottish Overlord Joopie is offline
    LegendRank
    Jun 2010 Join Date
    The NetherlandsLocation
    2,753Posts

    Re: Xss

    Quote Originally Posted by Biesmen View Post
    I checked the history. The BB code tags ruined the styling, no HTML or JS code was injected in the thread. It looks like the HTML tags were not closed properly by vBulletin while using nested BB code tags.
    Check. So not really XSS but it's still a way to ruin the styling etc.


    Join Our RaGEZONE Discord Now!


    Send me a PM | send me a mail

    Still waiting for XenForo to hit RaGEZONE.

  6. #6
    Super Moderator Biesmen is online now
    Super ModRank
    Apr 2007 Join Date
    2,472Posts

    Re: Xss

    Yep, @MentaL would have to take a look at it.
    Forum Rules | Account Support | Subscribe
    RaGEZONE Facebook

    "The reason why people give up so fast is because they tend to look at how far they still have to go, instead of how far they have gotten."



Advertisement