javascript - Cross Site Scripting Attack, troubles -


i'm preparing final exam class , attempting rework homework problems. 1 of them got 0 credit first time around.

the goal of exercise create url point page html below, , instead of showing collaboration policy intended, show own, user created collaboration policy.

attempted following without success...

escaped this

<script>document.getelementbyid('collab').firstchild = 'test';</script>

using website http://www.xs4all.nl/~jlpoutre/bot/javascript/utils/endecode.html

and added this... www.cs.edu/vulnerable.html/?[insert escaped script here] , didn't work. ideas on i'm going wrong here?

here html code (vulnerable.html) page suppose exploit.

<html><head> <script> function loaded() {   var parsed = document.location.href.match(/\?(.*)/);   if (parsed && parsed[1])     eval(unescape(parsed[1])); } </script> <title>example page title</title></head> <body onload="loaded()" bgcolor="#ffffff"> <font face="arial,arial,helvetica">  <table border=0 cellspacing=4 cellpadding=4> <tr> <td valign=top width="20%" bgcolor="#ffff66"> &nbsp;<p> &nbsp;<p> &nbsp;<p> <a href="home.html"> home</a> <p>  course description <p> <a href="notes.html"> lecture notes</a> <p> <a href="assign.html"> assignments</a> <p> <a href="ref.html"> reference</a> <p> &nbsp;<p> &nbsp;<p> &nbsp;<p>  </td>  <td valign=top width=800>  <h2 align=center> example course title </h2> <p> <h3 align=center>fall 2010</h3> <p>   <h2>syllabus</h2>  syllabus here...  <h2>collaboration policy</h2>  <p id="collab"> assignments strictly individual.  no collaboration permitted.    </td> </tr> </table>  </font> </body> </html>

remove script tags vector. put eval function runs javascript, not html.

also want vector be: document.getelementbyid('collab').innerhtml = 'test';


Comments

Post a Comment

Popular posts from this blog

asp.net - repeatedly call AddImageUrl(url) to assemble pdf document -

i'm using abcpdf , i'm curious if can recursively call addimageurl() function assemble pdf document compile multiple urls? something like: int pagecount = 0; int theid = thedoc.addimageurl("http://stackoverflow.com/search?q=abcpdf+footer+page+x+out+of+", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetochain(theid); } pagecount = thedoc.pagecount; console.writeline("1 document page count:" + pagecount); //flatten document (int = 1; <= pagecount; i++) { thedoc.pagenumber = i; thedoc.flatten(); } //now try again theid = thedoc.addimageurl("http://stackoverflow.com/questions/1980890/pdf-report-generation", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetoc
Read more

java - Android recognize cell phone with keyboard or not? -

in android app, want detect user's device if device has keyboard(like motorola milestone) , show corresponding user interface. guys know how that? ! regards justicepenny http://developer.android.com/reference/android/content/res/configuration.html public int keyboard the kind of keyboard attached device. 1 of: keyboard_nokeys, keyboard_qwerty, keyboard_12key. that's it!
Read more

iphone - How would you achieve a LED Scrolling effect? -

how achieve led scrolling effect example below? led sign - led ticker emulator iphone , ipad http://img.skitch.com/20101201-rsfh4p1bajb1wp94k466pdpiuj.preview.jpg sometimes remunerates comment in other posts :) have put code you, should implement font '8pin matrix' realistic feeling. uilabel *label; - (void)viewdidload { [super viewdidload]; label = [[uilabel alloc]initwithframe:cgrectmake(10, 50, 300, 20)]; label.font = [uifont fontwithname:@"courier-bold" size:16.0]; label.backgroundcolor = [uicolor blackcolor]; label.textcolor = [uicolor greencolor]; label.linebreakmode = uilinebreakmodecharacterwrap; // otherwise "…" label.text = @"this led text scrolled "; // blanks space between [self.view addsubview:label]; [nstimer scheduledtimerwithtimeinterval:0.12f target:self selector:@selector(scrolllabel) use
Read more