WHAT'S HOT
PARTS:
Part 5
Part 6
Part 7
Part 8
Part 9
Part 10
Part 11
Part 12
Part 13
Part 14
Part 15
Part 16
Part 17
Part 18
Part 19
Part 20
Part 21
Part 22
Prev | Current Page 164 | Next

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"

Upon logging in, the victim??™s browser is
redirected to the malicious URL, and the user??™s account is deleted.
Craft Your Attack??”Stored CSRF An attacker could also use stored CSRF to perform this
attack, which in the case of GoatFriend is quite easy. Stored CSRF requires that the
attacker be able to modify the content stored on the targeted web site, much like XSS.
Unlike XSS attacks, however, the attacker may not need to be able to inject active content
such as JavaScript or tags, and she may be able to perform the attack even
when limited by strict HTML filtering.
A common theme of Web 2.0 applications is the ability of users to create their own
content and customize applications to reflect themselves. This is especially true of blogs,
chatrooms, discussion forums, and social networking sites, which are completely based
on user-generated content. Although it is extremely rare to find a site that intentionally
allows a user to post JavaScript or full HTML, many sites do allow users to link to images
within their personal profile, blog post, or forum message.
Our attacker, knowing that other users must be authenticated to view her page on
GoatFriends, can add an invisible image tag to her profile pointing at the targeted URL,
like this:
src="https://www.


Pages:
152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176
After the Rain : how the West lost the East (page 24) A History of Indian Philosophy, Volume 1 (page 257) The Adventures of Tom Sawyer, Part 3. (page 31)
lampy ogrodowe określić zakłady bukmacherskie Wczasy nad morzem Gabi meble Warszawa