Page 1 of 2 12 LastLast
Results 1 to 10 of 13

Thread: Google+ Help Support & Google Translator Help Support [XSS] Share/Save - My123World.Com!

  1. #1

    Google+ Help Support & Google Translator Help Support [XSS]

    ------------------------------------------------------------------
    0x1 Affected Script: Google+ Help Support & Google+ Help Support & Google Translator Help Support

    0x2 Script Link: http://translate.google.com/ & http://pluse.google.com/
    0x4 Author: Sandeep kamble
    0x5 Reported : June 30 2010
    0x6 Public Release July 21 2010
    ------------------------------------------------------------------

    Affected Script Overview : Google+ Help Center where you can find tips and tutorials on using Google+ and other answers to frequently asked questions and Google Translate Help Center where you can find tips and tutorials on using Google Translate and other answers to frequently asked questions.

    Affected script :

    1) +/bin/search.py?query=
    2) support/bin/search.py?query= (Subdomain Translator)

    Exploit : Executing Javascript using the vulnerable variable called as ?Query . This attack is commonly know as Cross Site Scripting (XSS)
    Google + affected script having stored Xss attack which can used for the grabbing the cookies .
    Google Translator Non-persistent XSS attack which can be used to execute only the JS Script

    POC :
    1) Google +
    Code:
    http://www.google.com/support/+/bin/search.py?query=%22%3E%3Cscript%3Ealert%28%27ss%27%29%3C/script%3E&btnG=Search

    Don't shock , you might be thinking the payload "alert('ss')" and give output as "XSS" in message . This is happen due to spelling (google function did u meant it) ..

    Try to search this keyword
    Code:
    <script>alert('ss')</script>
    you will get the answer why it was coming.

    2) Translator Google
    Code:
    http://translate.google.com/support/bin/search.py?query=%22%3E%3Cscript%3Ealert%28%27s%27%29%3C%2Fscript%3E&btnG=Search+Help&ctx=en%3Asearchbox
    I don't have screen shot of Google translator XSS attack.

    Countermeasure

    1) Determine whether HTML output includes input parameters
    2) In short perform input sanitization

    Special Thanks : Rahul fbone , Bond, 41.w4r10r, Subhash, ShriNivas , Vishal , Yogesh, Darshit


    Finally you can See my name at
    Code:
    http://www.google.com/about/corporate/company/halloffame.html
    /peace

    Sandeep k
    Last edited by [s]; 07-21-2011 at 08:04 PM.
    Garage4Hackers bugs for the community , of the community

    We provide IT
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    :
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.


    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

  2. #2
    Infosec Enthusiast AnArKI's Avatar
    Join Date
    Jul 2010
    Location
    London
    Posts
    514
    Blog Entries
    2
    Awesome.....now we have 2 frm garage there...

  3. #3
    Security Researcher fb1h2s's Avatar
    Join Date
    Jul 2010
    Location
    India
    Posts
    616
    Blog Entries
    32
    Seems like we will soon need a separate section dedicated for google Bugs \m/ .
    Hacking Is a Matter of Time Knowledge and Patience

  4. #4
    Super Commando Dhruv abhaythehero's Avatar
    Join Date
    Sep 2010
    Location
    Lucknow/Pune,India
    Posts
    466
    Blog Entries
    2
    nice work bro !
    In the world of 0s and 1s, are you a zero or The One !

  5. #5
    Garage Addict 41.w4r10r's Avatar
    Join Date
    Jul 2010
    Location
    Pune
    Posts
    338
    Blog Entries
    3
    Awesome work Sandeep.....
    Keep It Up...

  6. #6
    Web Security Consultant amolnaik4's Avatar
    Join Date
    Jul 2011
    Location
    webr00t
    Posts
    277
    Blog Entries
    4
    Gr8 job, Sandeep......keep it up and it'll pay u!!!

  7. #7
    thanks to every one G4H is Best IT Security Professional , i ever seen which are close to me ...
    Garage4Hackers bugs for the community , of the community

    We provide IT
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    :
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.


    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    |
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

  8. #8

  9. #9

  10. #10
    Excellent..Keep it up !!
    The three great essentials to achieve anything worth while are: Hard work, Stick-to-itiveness, and Common sense. - Thomas A. Edison
    __________________________________________________ _____________________

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •