sábado, 6 de septiembre de 2014

[Multiple Stored XSS and Self-XSS] Audiomack [Fixed, 50$ reward]

Hey! I've benn on holidays all August.
I want to publish a tale of XSSes on Audiomack, some are Stored and some Self-XSS.
I must say that they were so fast fixing them (Self isn't fixed) and also I must say them thanks for their reward.

  1. Stored XSS (25 $
Go to "www.audiomack.com/manage" --> Change your "Artist name" to this --> "><<svg/onload=prompt(document.cookie)> --> Save the changes --> Go to audiomack.com



   2. Stored XSS (25 $) and Self-XSS (unfixed, no reward)

Login into your account --> go to https://www.audiomack.com/manage/songs/upload --> upload any mp3 file with this name ---> "><<svg onload=prompt(0)>.mp3 (This is the Self-XSS) -->You will get the XSS alert and proof of vuln. --> Publish it ----> my example ---> http://www.audiomack.com/song/svgonloadprompt0/nirij (it has a prompt(0), so it is secure for you to click on it :P) --> It affects non-registered users also ---> example with logged out chrome in the attached images







Kind regards

    No hay comentarios:

    Publicar un comentario

    Please, leave a comment! Thank you!