Basic Guest Book Injection |
03-02-2010, 10:54 PM (This post was last modified: 03-02-2010 11:02 PM by protocol.) Post: #1 | |||
| |||
Just saw this somewhere so feel like sharing So you have found a guest book which allows for HTML injection, so what now, what can you do? You can do alot of interesting stuff with HTML injection (Which is actually called XSS). Like what… So we know that we can enter HTML into the page, chances are if the owner hasn’t stopped you putting HTML into the page, chances are they wont have stopped you putting PHP into the page (this will only work if the website is hosted on a host which has PHP installed for the users, most hosts allow for PHP pages i believe). But what if you can’t inject PHP into the guest book Ok so you can’t inject PHP directly into the guest book, unlucky. But its not the end of the world, lets think through HTML and think what we might be able to use here, what allows us to put things into a webpage without having the processing done on that website… IFRAME, FRAME, EMBED, APPLET FRAME, IFRAME Lets think you want to get a php page on to a website which only accepts HTML, so lets give it some HTML. |
Do you need to increase your credit score?
ReplyDeleteDo you intend to upgrade your school grade?
Do you want to hack your cheating spouse Email, whatsapp, Facebook, instagram or any social network?
Do you need any information concerning any database.
Do you need to retrieve deleted files?
Do you need to clear your criminal records or DMV?
Do you want to remove any site or link from any blog?
you should contact this hacker, he is reliable and good at the hack jobs..
contact : cybergoldenhacker at gmail dot com
CONTACT: onlineghosthacker247 @gmail. com
ReplyDelete-Find Out If Your Husband/Wife or Boyfriend/Girlfriend Is Cheating On You
-Let them Help You Hack Any Website Or Database
-Hack Into Any University Portal; To Change Your Grades Or Upgrade Any Personal Information/Examination Questions
-Hack Email; Mobile Phones; Whatsapp; Text Messages; Call Logs; Facebook And Other Social Media Accounts
-And All Related Services
- let them help you in recovery any lost fund scam from you
onlineghosthacker Will Get The Job Done For You
onlineghosthacker247 @gmail. com
TESTED AND TRUSTED!