Search This Blog

Powered by Blogger.

Blog Archive

Labels

Google and Intel vulnerable to XSS attack , found by phovios


A Hacker named as phovios discovered XSS vulnerabilities in Google and Intel websites. 

Vulnerability in google:
Type:Self-XSS
Target url: http://code.google.com/apis/youtube/articles/view_youtube_jsonc_responses.html
severity: low

The username field is vulnerable to XSS.  Load the target url and enter the following code in the field:
<img src=1 onerror="alert('xss')"/>
This will pop up "xss".

Vulnerability in Intel.com
One of the sub domain of Intel.com vulnerable to XSS attack.

Type: XSS(Non-persistent)
Target: http://processormatch.intel.com/compdb/
Severity: Medium

Load the target url and enter the following code in the search box:
</script><img src="<img src=search"/onerror=alert("Xss")//"> 
 
Share it:

Vulnerability

Web Application Vulnerability

XSS Vulnerability