[OWASP-Security101] JSON with XSS and CSRF exploitation.

Shritam Bhowmick shritam.bhowmick at gmail.com
Fri Apr 19 12:13:53 UTC 2013


Hello, OWASP,

I am on a project and trying to actually penetrate (demonstrate) a client
about the seriousness of an XSS attack. The attack is on a JSON server.
It's not accepting http methods so that i can deploy a cookie grabber to
explain him, how serious is the problem

This is the original link. I would really requst and love to get suggestion
with what i can more to convey the CTO that this is a serious flaw?

http://www.snapdeal.com/products/lifestyle-handbags-wallets?q=%3Cb%3Eabcd1%3Cscript%3Ealert%280%29%3C/script%3E%3Cscript%3Ealert%28document.location%29%3C/script%3E%3Cscript%3Edocument.location=%22http://http://http://www.yahoo.com%22%3C/script%3E

also this:

www.snapdeal.com/gtcol?pc=

I refereed to
http://blog.spiderlabs.com/2012/09/json-hijacking-demystified.html
but the point is I am not able to decide, what to do with it, is it
supposed to do a CSRF attack? if, yes, how?
-- 
 Regards
Shritam Bhowmick
Security Analyst
Lucideus Tech Pvt Ltd
------------------------------------------------------------------------------------------------------------------------------------------------------

Follow us @ https://www.facebook.com/LucideusTech<http://www.google.com/url?q=https%3A%2F%2Fwww.facebook.com%2FLucideusTech&sa=D&sntz=1&usg=AFQjCNHIUwxfLLaHD-9JP0X99ELv6YzAVA>

For any queries, contact us at
info at lucideustech.com<https://mail.google.com/mail/h/1wlmfo278twm7/?&v=b&cs=wh&[email protected]>
**  © Lucideus Tech Pvt Ltd. C-17 Safdarjung Development Area, Hauz Khas,
Opposite IIT Delhi Main Gate, New Delhi, India 110016

The information contained herein (including any accompanying documents) is
confidential and is intended solely for the addressee(s). It may contain
proprietary, confidential, privileged information or other information
subject to legal restrictions. If you are not the intended recipient of
this message, please do not read, copy, use or disclose this message or its
attachments. Please notify the sender immediately and delete all copies of
this message and any attachments. This e-mail message including
attachment(s), if any, is believed to be free of any virus. However, it is
the responsibility of the recipient to ensure for absence of viruses.
Lucideus Tech shall not be held responsible nor does it accept any
liability for any damage arising in any way from its use.


More information about the Security101 mailing list