Myspace XSS hacks
I have uncovered come cool working myspace XSS hacks but I am in a dilemma as to if I should reveal them or not on this blog. These hacks will allow you to store myspace user cookies and thus be able take over peoples accounts.
On one hand revealing these hacks will hasten their death, but my my readers would appreciate the knowledge being shared.
The downside with this hack is that it requires that the user click a link. Back before 2007 there were many on-load myspace XSS hacks that were capable of being executed on profile.myspace.com page but those were patched. What this meant was that as soon as a profile page loads the xss would be executed instantly and discreetly without the victim being aware, but I highly doubt this is possible anymore.
The exploit logs complete cookie info when I execute it from an Apple computer, but for some reason why I try it on my PC it only logs the IP address, which doesn’t do me much good.
Hmmm….
Write a comment
You need to login to post comments!