Register
Help
Remember Me?

Results 1 to 18 of 18

Thread: Since its patched now, Here is some live XSS on gaiaonline.

LinkBack
- LinkBack URL
- About LinkBacks
Thread Tools
- Show Printable Version
- Subscribe to this Thread…
Search Thread
- Advanced Search
Rate This Thread
- Current Rating
- Excellent
- Good
- Average
- Bad
- Terrible
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Aleena Since its patched now, Here... 25 Sep. 2011, 07:58pm

The Unintelligible Smooth move, Aleena. 25 Sep. 2011, 08:00pm

Aleena Fix`d thankies sir. Edit:... 25 Sep. 2011, 08:02pm

Skrillex Not everything can be held... 25 Sep. 2011, 10:30pm

Taz Huh. ? 25 Sep. 2011, 10:38pm

Aleena ...? I dont think he was... 25 Sep. 2011, 10:42pm

The Unintelligible Wasn't what I meant by... 25 Sep. 2011, 11:01pm

Skrillex Just a FYI Looks like you... 25 Sep. 2011, 11:10pm

The Unintelligible Oh, but it does mean... 25 Sep. 2011, 11:39pm

Skrillex You know. I like your user... 25 Sep. 2011, 11:50pm

XiRaX Everything we touch on Gaia... 25 Sep. 2011, 08:02pm

Drakonid Kids, don't make me lock... 26 Sep. 2011, 01:12am

Skrillex I sowwy Drak. I be good now.... 26 Sep. 2011, 01:16am

Aleena Thanks drak, You know I dont... 26 Sep. 2011, 12:10pm

The Unintelligible Yee. We don't want a 1337... 26 Sep. 2011, 02:00am

Skrillex You said the right word for u... 26 Sep. 2011, 02:37am

Omlett I lol'd . 26 Sep. 2011, 02:03am

XiRaX Just stop this shit, holy... 26 Sep. 2011, 03:52am

25 Sep. 2011 07:58pm #1

Aleena

Fabulous

Join Date

Jun. 2011

Posts

2,324

Reputation

757

LCash

0.25

Since its patched now, Here is some live XSS on gaiaonline.

Found it the other day.
Told XiRaX about it earlier today, And as of about....5 minutes ago, Patched.

But, for those of you in underground silver who saw my documenting of XSS properties in gaiaonline, this should give you some insight.

It worked out Very well, In this video I only did two demonstrations, One was the html of gaia`s cashshop history viewer (AKA email exploit) And the other was just the d8silo index.

Amazing how quick gaia is at patching, Probably a good thing too, This could have raised some hell.

Last edited by Aleena; 25 Sep. 2011 at 08:02pm.

Gaiaonline Exploit Log:
http://d8silo.b1.jcink.com/index.php?act=Pages&pid=12

The day I re-wrote gaias homepage:
http://rankmyhack.com/userview.php?user=Nirvash

Reply With Quote Trade Rep.

« Dear Taz, | Attn Metalheads »

Tags for this Thread

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Search Engine Friendly URLs by vBSEO