Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
Thread Rating:
  • 0 Vote(s) - 0 Average


[NEW PAGES] Custom CC Pages filter_list
Author
Message
Leumonic Offline
Registered (Legends)
Registered (Legends)
Eleven Years of Service
Posts: 116
Threads: 19
Reputation: 7

Points: 9NSP
Elite
RE: [NEW PAGES] Custom CC Pages 07-30-2013, 10:14 PM #11
(07-30-2013, 09:59 PM)Eternity Wrote:
(07-30-2013, 09:56 PM)Platinum Wrote:
(07-30-2013, 09:33 PM)Eternity Wrote: Good work i must say, though if I'm gonna start with an API for the forum i think i will go with the default user information since not all the user's information is stored in that page.

Well, me and Semp are already working on 2 API's ;(

Doesn't hurt with a third then Wink

Unless you're doing it a third way, separate to the ways we've both come up with, you're sort of just re-inventing the wheel, are you not?

Reply

Eternity Offline
Posting Freak
Twelve Years of Service
Posts: 773
Threads: 55
Reputation: 0

Points: 18NSP
RE: [NEW PAGES] Custom CC Pages 07-30-2013, 10:32 PM #12
(07-30-2013, 10:14 PM)Sempiternal Wrote:
(07-30-2013, 09:59 PM)Eternity Wrote:
(07-30-2013, 09:56 PM)Platinum Wrote:
(07-30-2013, 09:33 PM)Eternity Wrote: Good work i must say, though if I'm gonna start with an API for the forum i think i will go with the default user information since not all the user's information is stored in that page.

Well, me and Semp are already working on 2 API's ;(

Doesn't hurt with a third then Wink

Unless you're doing it a third way, separate to the ways we've both come up with, you're sort of just re-inventing the wheel, are you not?

Probably, I have come up with a decent amount of system on my own.
[Image: tumblr_m4vms28lYu1qj3ir1.gif]

Reply

Xanii Offline
Leader of Sagacity & Guardians
Eleven Years of Service
Posts: 227
Threads: 35
Reputation: 0

Points: 12NSP
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 09:04 AM #13
I like it. Don't click this in chrome, but I like this profile of yours... Wink

http://goo.gl/FHiewb
[Image: FzuhIc]

Free CCE (CodeCommunity Enhancer) UserScript!

Reply

Platinum Offline
Senior Member
Eleven Years of Service
Posts: 501
Threads: 18
Reputation: 0

Points: 6NSP
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 10:03 AM #14
(07-31-2013, 09:04 AM)Xanii Wrote: I like it. Don't click this in chrome, but I like this profile of yours... Wink

http://goo.gl/FHiewb

So what about it, it adds an iframe or something and doesn't display the info.. Why would you do that?

Reply

Leumonic Offline
Registered (Legends)
Registered (Legends)
Eleven Years of Service
Posts: 116
Threads: 19
Reputation: 7

Points: 9NSP
Elite
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 10:11 AM #15
(07-31-2013, 10:03 AM)Platinum Wrote:
(07-31-2013, 09:04 AM)Xanii Wrote: I like it. Don't click this in chrome, but I like this profile of yours... Wink

http://goo.gl/FHiewb

So what about it, it adds an iframe or something and doesn't display the info.. Why would you do that?

He is hoping to get it to toy with the page and maybe do some XSS, but I am fairly certain it is fixable to get it to XSS safe.

Reply

Platinum Offline
Senior Member
Eleven Years of Service
Posts: 501
Threads: 18
Reputation: 0

Points: 6NSP
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 10:16 AM #16
(07-31-2013, 10:11 AM)Sempiternal Wrote:
(07-31-2013, 10:03 AM)Platinum Wrote:
(07-31-2013, 09:04 AM)Xanii Wrote: I like it. Don't click this in chrome, but I like this profile of yours... Wink

http://goo.gl/FHiewb

So what about it, it adds an iframe or something and doesn't display the info.. Why would you do that?

He is hoping to get it to toy with the page and maybe do some XSS, but I am fairly certain it is fixable to get it to XSS safe.

Aah like that, you can even block XSS if you wish I'm sure. Or you could check if ONLY the user variable is set.

Reply

Xanii Offline
Leader of Sagacity & Guardians
Eleven Years of Service
Posts: 227
Threads: 35
Reputation: 0

Points: 12NSP
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 06:17 PM #17
It IS XSS vulnerable. I was having some fun with making it automatically donate CCP or +rep me when someone visited the page, but I decided to do an iframe instead. Chrome automatically blocks XSS, which makes this no fun for Chrome users.
[Image: FzuhIc]

Free CCE (CodeCommunity Enhancer) UserScript!

Reply

Leumonic Offline
Registered (Legends)
Registered (Legends)
Eleven Years of Service
Posts: 116
Threads: 19
Reputation: 7

Points: 9NSP
Elite
RE: [NEW PAGES] Custom CC Pages 07-31-2013, 11:04 PM #18
(07-31-2013, 06:17 PM)Xanii Wrote: It IS XSS vulnerable. I was having some fun with making it automatically donate CCP or +rep me when someone visited the page, but I decided to do an iframe instead. Chrome automatically blocks XSS, which makes this no fun for Chrome users.

No more XSS. The vuln. you found has been assessed and removed.

Reply







Users browsing this thread: 1 Guest(s)