The Hacker News Logo
Subscribe to Newsletter

XSS Vulnerability in Google Code site



XSS (Cross site ScriptingVulnerability discovered on Google Code website as shown. Claimed to be Discovered by Vansh Sharma & Vaibhuv Sharma.

Proof Of Concept: Just go to http://code.google.com/apis/ajax/playground/ and then click on edit HTML after that remove all the codes and type this script:
<img src="<img src=search"/onerror=alert("XSS")//">
And click on DEBUG CODE, and then first it will show you "Sample must have <head> element" click OK and wait for the window to load if nothing happen then try the same thing again or simply you can click on RUN CODE, and you will get a popup which is XSS.

Another Similar XSS posted by +Pirate, as posted on HackForum Community.


Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.
SHARE
Comments
Latest Stories
Best Deals

Newsletter — Subscribe for Free

Join over 500,000 information security professionals — Get the best of our cyber security coverage delivered to your inbox every morning.