1 post • joined 25 Aug 2009
Not just a funny breadcrumb
Not only was this URL-supplied data cached for subsequent visitors but the next day after the breadcrumb fiasco was shown, I found an injection hole in Sears' Craftsman.com website. I was able to place images (and with the img tag, scripts) into the breadcrumb which could have been used to hijack user accounts. (Not that I know anyone with a Craftsman.com account but I suspect they exist.)
Typical unsanitized user data being shown on screen but with the idiocy magnified a thousandfold due to the caching of that data for the next user.
- Product round-up Coming clean: Ten cordless vacuum cleaners
- Something for the Weekend, Sir? I need a password to BRAKE? What? No! STOP! Aaaargh!
- Episode 13 BOFH: WHERE did this 'fax-enabled' printer UPGRADE come from?
- Vulture at the Wheel Ford's B-Max: Fiesta-based runaround that goes THUNK
- Worstall @ the Weekend BIG FAT Lies: Porky Pies about obesity