Tencent microblogging private letter stored XSS cross-site vulnerabilities-vulnerability warning-the black bar safety net

2012-12-02T00:00:00
ID MYHACK58:62201235872
Type myhack58
Reporter 佚名
Modified 2012-12-02T00:00:00

Description

Vulnerability title: Tencent microblogging private letter storage typeXSScross site vulnerability

Vulnerability type: xsscross-site scripting attacks

Harm level: high

Brief description:

Recently everyone popular series. Then we are also opening it to the recent heartache of the fat has been serialized, don't know the hair was repeated.

Detailed description:

Vulnerability causes: the

The defect file:

http://mat1.gtimg.com/www/mb/js/mi_121016.js

  1. The first to enter the MI. TalkList. picEvent function

MI. TalkList. picEvent=function(a){

....

Wherein a is page in the All class for the PicBox div set, i.e., div. PicBox

  1. Loop each class for the PicBox div

for(varb=0,f=a. length;b

varg=a[b],

....

g for each div

  1. k=c(g,"img")[0],get the PicBox in the first img pictures

  2. h=k. parentNode,gain k of the parent element is a link

  3. j=c(g,". picTools"),obtaining PicBox this div in the picToolsDIV

  4. Defects in the following this few words of JS code

if(! MI. user. fun. wideStyle)

MI. tmpl. picTool=[",("turn to the left"),'|',("turn to the right"),",_("view original"),"

[1] [2] [3] next