Wc3edit.net steals swat cookies now - tryout a XSS attack

Post by **Dekar** » May 5th, 2009, 6:55 pm

Since redscull took some time to understand how XSS works (no offence, it just isn't that easy!) I made a proof of concept.
Wc3edit.net now steals the swat account cookie for every user who visits this forum and is logged in his swat account.
This data _doesn't_ allow anyone to access your account (I didn't plan to abuse it) but simply shows the vulnerability.

Here you can see the cookies it logged so far:
http://dekar.wc3edit.net/logger.php

To try it out just make an account at http://night.org/swat2/playerdb/index.php?p=new and visit wc3edit.net after logging in there.

Hmmz0r · Post by **Hmmz0r** » May 5th, 2009, 7:05 pm

I have no idea what this does, but it sounds Dangerous o.O

Post by **Dekar** » May 5th, 2009, 7:32 pm

http://en.wikipedia.org/wiki/Cross-site_scripting
Yeah kinda... could delete/steal data... But I'm not evil

Hmmz0r · Post by **Hmmz0r** » May 5th, 2009, 7:46 pm

That truly is evil

Post by **Dekar** » May 5th, 2009, 8:57 pm

Okay the party is over, he finally fixed it

wc3edit.net

Wc3edit.net steals swat cookies now - tryout a XSS attack

Wc3edit.net steals swat cookies now - tryout a XSS attack

Re: Wc3edit.net steals swat cookies now - tryout a XSS attack

Re: Wc3edit.net steals swat cookies now - tryout a XSS attack

Re: Wc3edit.net steals swat cookies now - tryout a XSS attack

Re: Wc3edit.net steals swat cookies now - tryout a XSS attack