« MOSEB-25: Vulnerabilities at dmoz.org
Місяць багів в Пошукових Системах: день двадцять п’ятий »

MOSEB-25 Bonus: Vulnerability at search.dmoz.org

21:37 25.06.2007

New bonus vulnerability in DMOZ (Open Directory Project). In this case vulnerability at other domain, than in MOSEB-25: Vulnerabilities at dmoz.org.

The vulnerability is at DMOZ (search.dmoz.org) in search results. This Cross-Site Scripting hole I found 25.05.2007.

XSS:

The vulnerability is in locale parameter:
http://search.dmoz.org/cgi-bin/search?search=test&locale=%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E

Also page with html injection hole has PR4. It will be interesting for black seo guys.

Moral: searching in catalogs can be dangerous.

Note, that DMOZ belongs to Netscape. So Netscape (and AOL) also responsible for this vulnerability.

Also note, that DMOZ search use AOL engine which use Google engine. So Google also responsible for this vulnerability.


This entry was posted on 21:37 25.06.2007 and is filed under MOSEB. You can follow any responses to this entry through the RSS 2.0 feed.

Leave a Reply

You must be logged in to post a comment.