214, 5/11 ȸ¿ø°¡ÀÔ  ·Î±×ÀΠ 
   Ilios
   googlebig.com/hackgame ¿¡¼­ ³ª¿À´Â XSS¹®Á¦ Áú¹®µå¸³´Ï´Ù.

http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_Web&no=2 [º¹»ç]


http://www.googlebig.com/hackgame/Play

¿©±â¿¡ ·¹º§ 5¿¡¼­

You must to appear an alert with text XSS without "> at begin of code

Naming convention: <tag>code</tag>

¶ó°í ¹®Á¦°¡ ÁÖ¾îÁ®ÀÖ°í

txt¹Ú½º°¡ ÁÖ¾îÁ®Àִµ¥

µµ¹«Áö °¨ÀÌ ¾È ÀâÈ÷³×¿ä; XSS cheat ´Â °Ë»öÇÏ´Â ÇÑ¿¡¼­ ´Ù Çغôµ¥ ¾È µÇ³×¿ä;

"> À» ÄÚµåÀÇ ¾Õ¿¡ ºÙÀÌÁö ¸»°í Ç϶ó´Â°Å °°Àºµ¥;; ¿ø;;


* ¸Û¸Û´Ô¿¡ ÀÇÇؼ­ °Ô½Ã¹° À̵¿µÇ¾ú½À´Ï´Ù (2010-11-28 12:02)
  Hit : 5830     Date : 2010/11/23 09:07


    
blueh4g "> ¸¦ ºÙÀÌÁö ¸»¶ó°í ÇÑ´Ù¸é
" ¸¸ ºÙÀÎ´Ù´Â°Ç ±¦Âú´Ù´Â°Ç°¡¿ä;

" onload="alert('xss');"> ¹¹ ÀÌ·±°Íµµ ÀÖ±ä Çѵ¥.. ÀÔ·ÂÇÑ ±¸¹®ÀÌ °á°úÀûÀ¸·Î ¾î¶² °á°úâ¿¡
ex) textarea ¿µ¿ªÀÎÁö, input type='text' ÀÇ ¹ë·ù°ªÀÎÁö, ÀÏ¹Ý ÄÁÅÙÃ÷¿µ¿ªÀÎÁö ¿¡ µû¶ó¼­ ¾î¶»°Ô ½á¾ßµÉÁö°¡ Á¤ÇØÁö±â ¶§¹®¿¡ Àú°Í¸¸ °®°í´Â Á¶±Ý ¾Ö¸ÅÇϳ׿äa		 2010/11/24  
Ilios bluleh4g // "¸¸ ºÙÀÎ´Ù´Â°Ô ±¦ÂúÀº °ÇÁö´Â Àß ¸ð¸£°Ú³×¿ä;

¼Ò½º´Â

<!--
_____________________BEGIN HACKGAME________________________________
-->

<h2>GoogleBig - HackGame v0.8.2</h2><br />
<div>
<a href="/hackgame/">Home Hackgame</a> |
<a href="/hackgame/SignUp">Register</a> |
<a href="/hackgame/Login">Login</a> |
<a href="/hackgame/Play">Play</a> |
<a href="/hackgame/Stats-Pag-0">Stats</a> |
<a href='/hackgame/Stats-Level-11'>Winners</a> |
<a href="/forum/hackgame-f-77.html" target="_blank">Forum support</a>
</div><br />
<div class="post">
<h2>Level: 5</h2><br><br><div class="archive"><br />You must to appear an alert with text XSS without "> at begin of code<br />
<div class="testobianco">Naming convention: <tag>code</tag></div>
</div><br />
<form method="post" action="">
<div class="white">
<input type="text" name="search" class="cerca">
<input name="Submit" type="submit" class="cerca" value="Search">
</div>

</form>

<script>alert('Access Denied');</script></div>
<!--
_____________________END HACKGAME________________________________
-->

ÀÌ·¸°Ô ³ª¿ÍÀֳ׿ä		 2010/11/29  
134   webhacking.kr 33-4¹ø¹®Á¦ Áú¹®ÀÔ´Ï´Ù.[3]     hygasyde
 03/26 4491
133   file upload Ãë¾àÁ¡ Áú¹®ÀÔ´Ï´Ù.[5]     hyunmin8
 09/25 4232
132   À¥ ÇØÅ·¿¡ °ü½ÉÀÖÀ¸½ÅºÐ...[2]     hyunmin8
 10/02 4167
131   À¥½© º»ÁúÀûÀ¸·Î ¹æ¾îÇÒ¼ö ÀÖ´Â ¹æ¹ý?[1]     idbali
 07/24 3320
  googlebig.com/hackgame ¿¡¼­ ³ª¿À´Â XSS¹®Á¦ Áú¹®µå¸³´Ï´Ù.[2]     Ilios
 11/23 5829
129   ¸ðÀÇÇØÅ· ¿¬½À¿¡ ÇÊ¿äÇÑ °Í.     inwoox
 10/11 4102
128   Ä£±¸°¡ Á¦ÄÄ¿¡ ÇØÅ·ÇÁ·Î±×·¥ ±ò¾Æ³ù´Ù°í ¤Ð¤Ð °í¼ö´Ôµé µµ¿ÍÁÖ¼¼¿ä[2]     ipon7878
 06/20 4249
127   KISA ÇØÅ·¹æ¾î ÈÆ·ÃÀå WEB ¹®Á¦¿Í °ü·ÃÇؼ­ Áú¹®µå¸³´Ï´Ù.[1]     jhjang1005
 07/16 3506
126   ÇØÄ¿µéÀÇÇØÅ·¹æ½Ä[2]     jhm2882
 12/17 5627
125   ÀÇ·ÚÀÔ´Ï´Ù[4]     jjogun
 01/30 3048
124   À¥ÇØÅ· ¹× ¹æ¾î °øºÎ ¾î¶²°Å ºÎÅÍ ÇÏ¿©¾ß Çϳª¿ä?[1]     jobs7
 10/17 3806
123   Áú¹®ÀÔ´Ï´Ù.     jsw2604
 12/27 2813
122   ÀÌ °ø°Ý±¸¹®¿¡ ´ëÇÑ ¼³¸í ºÎŹµå¸³´Ï´Ù.[1]     ju3622
 05/05 3567
121   ±Ã±ÝÇؼ­ Áú¹®ÇÕ´Ï´Ù~[2]     ju3622
 01/09 2708
120   php¿¡¼­ Á¡(.)[3]     ka0r1
 07/11 3740
119   ·Î±×ÀÎ ÆäÀÌÁö ±¸ÇöÁß header ÇÔ¼öÀÇ ÀǹÌ[2]     ka0r1
 04/10 4759
118   ·Î±×¾Æ¿ô ±¸Çö[1]     ka0r1
 04/10 3668
117   header¿Í body°¡ ±¸ºÐµÇ¾î ÀÖ´Â ÀÌÀ¯?[4]     ka0r1
 04/12 4697
116   SQL Injection[5]     ka0r1
 04/14 3651
115   MySQL Áú¹®[2]     ka0r1
 04/15 3509
[1][2][3][4] 5 [6][7][8][9][10]..[11]

Copyright 1999-2024 Zeroboard / skin by Hackerschool.org / Secure Patch by Hackerschool.org