FA+
Shop
337
Views
Views
1
Favorites
Favorites
Category
All / All
Species Unspecified / Any
Size 1280 x 960
File Size 247.4 kB
Report this content
More from white-hat
Text/Javascript Injection -- Hello My Future Girlfriend!
I added the viewing of the actual FA sourcecode to give you an idea of what this looks like, since as of right now you'd have to be logged in as me to see the problems this causes.
Basically, I uploaded a story (which is actually javascript) to the server. Since the HTML is only formatted in such a way that when the file is viewed the HTML is stripped, the original file remains in tact. So, when you try to view it, no HTML is being executed, but the file is still in its original format regardless.
Using form injection, I inserted the highlighted command onto my page to get the bizarre mish-mash of horrid looking Geocities HTML you see in the picture above.
Basically, I uploaded a story (which is actually javascript) to the server. Since the HTML is only formatted in such a way that when the file is viewed the HTML is stripped, the original file remains in tact. So, when you try to view it, no HTML is being executed, but the file is still in its original format regardless.
Using form injection, I inserted the highlighted command onto my page to get the bizarre mish-mash of horrid looking Geocities HTML you see in the picture above.
Category All / All
Species Unspecified / Any
Size 1280 x 960px
File Size 247.4 kB
Comments