0
1 votes
Youtube, The New Myspace?
06 July 2010
It would seem that a security researcher has found an html injection flaw in youtube's comment section!
The way it works:
When creating a comment a <script> tag is added at the beginning of the comment, then html is added after the tag. The script tag is self terminated. At this point youtube has stripped the "<" part of the tag, so a filter encoded strings should still work. Other forms of injection are as follows:
<script><BODY onLoad="alert('xss');"
<script>Zbody onLoad="document.write('<script>window.location=String.fromCharCode(add code here);</script>');";
Let's see how long it takes for them to find more, many pentesters from various security groups have had a field day with this since it was found July 3rd.
Gh0$7
The way it works:
When creating a comment a <script> tag is added at the beginning of the comment, then html is added after the tag. The script tag is self terminated. At this point youtube has stripped the "<" part of the tag, so a filter encoded strings should still work. Other forms of injection are as follows:
<script><BODY onLoad="alert('xss');"
<script>Zbody onLoad="document.write('<script>window.location=String.fromCharCode(add code here);</script>');";
Let's see how long it takes for them to find more, many pentesters from various security groups have had a field day with this since it was found July 3rd.
Gh0$7
