Persistent XSS bug discovered on eBay

"Once you login to your account on eBay, edit the option "About me".

http://cgi3.ebay.com/ws/eBayISAPI.dll?AboutMeLogin

Now go to :

http://members.ebay.com/ws/eBayISAPI.dll?EditUserPageHTMLSource

and edit with HTML enabled.

Demo URL (My profile):

http://members.ebay.com/ws/eBayISAPI.dll?ViewUserPage&userid=shell2h4ck

It is also vulnerable to redirection and other normal xss attacks


One of the possible exploitation scenarios is malicious people stealing cleartext credentials from registered users by injecting an iframe tag that retrieves another rogue eBay login page from a remote server.

http://xssed.com/news/125/Persistent_XSS_bug_discovered_on_eBay/

FB sqlhack App XSS vuln

another bug !!!
http://apps.facebook.com/sqlhack/ insert iframe script and chk it ;) Insert the script in "Update Status:" option though few wont work :P
snapshot :

FB marketplace persistent xss

FB marketplace has 4,247,992 monthly active users and suffers from persistent crosss site scripting.

http://www.facebook.com/apps/application.php?id=128581025231&ref=appd

(application link)
Goto

http://facebook.oodle.com/account/listing/

and post your xss script and post..if you have creativity you can use them ;)

Note: Also redirection works

Screenie:

FB app "CAUSE" Persistent xss

About : Causes
If you are an individual activist, nonprofit, foundation, company, or anyone else wanting to learn more about how to utilize Causes please visit Causes Exchange.

Causes empowers anyone with a good idea or passion for change to impact the world. Using our platform, individuals mobilize their network of friends to grow lasting social and political movements.

USERS : 17,053,968 monthly active users,
VULN : PERSISTENT XSS :

Snap shot:

Facebook Chakpak Movies Xss Vuln

About:
The application for Indian movie lovers. Rate and review any movie, from Sholay to Jab We Met, from Sivaji to Pather Panchali. View latest wallpapers of your favorite actors and actresses including Shahrukh, Katrina, Rajnikanth.

Insert your xss scripts ;)

Here are few screen shots

FB NetworkedBlogs App Persistent XSS Vuln

About NetworkedBlogs App
Promote your blog on Facebook and syndicate your feeds to your wall and fan pages. Join 450,000 other bloggers on the largest community of bloggers and blog lovers on Facebook.

Again this app has 1,712,628 monthly active users

Vuln :
Persistent xss and html injection

Goto your FB acct..add this app and create your blog...the prob is it has a char limit

Here are the few screenshots

1. Xss Inj3ction:


2.Html Inj3tion:

Facebook Quiz Monster Persistent XSS Vuln

About Facebook Quiz Monster
It helps you to create your own quiz facebook application! Quiz Monster makes it simple, fun and easy!

Vuln found :
Persistent XSS VUln

create your own quiz 1st and insert your xss scripts in the options available there...like for example

">< script > alert("w00t")< /script >

once done go and check your quiz

currently this application has 14,238,107 monthly active users ....and so the attackers can also try to steal their cookies (didnt try but you can)

One such quiz is

http://apps.facebook.com/quizcreator/quizzes/714688/play

Here is a screenshot:

Facebook movies by Flixster(search option) xss vuln

About:
Rate movies and share what you saw or want to see with friends. Compare your movie taste. Take over 100,000 movie trivia quizzes.
Join over [b]40 Million people using Flixster on Facebook[/b].
This application may contain content that is unsuitable for the general Facebook user3,446,811 monthly active users

I tired few xss scripts but sadly few didnt work out...but then i tired this..

">< script> alert("w00t")< /script>

So here are the few screen shoots vch actually luks dont look like xss ;) your views r necessary :D

and this is a normal search which didnot give me any popup :P

Facebook movies by Flixster Persistent XSS Vuln

About :
Rate movies and share what you saw or want to see with friends. Compare your movie taste. Take over 100,000 movie trivia quizzes.
Join over 40 Million people using Flixster on Facebook.
This application may contain content that is unsuitable for the general Facebook user3,446,811 monthly active users

Lil more analysis of this app gave me a path for persistent xss which everyone loves the most :P
Step 1 : http://apps.facebook.com/flixster/quiz/create :D
Do the basic steps and select create quiz from the scratch..

i tired the 2 parameters

">< script>alert("W00t")< /script>

and

">< script> alert( document.cookie)< /script>

which very well works :D
Hope you can pwn your friends now ;)
Few screen shots

Facebook Music app Persistent Xss Vuln

About :
An independently managed application which allows Facebook users to place their music onto their profiles.
It has 547,534 monthly active users

LINK :http://www.facebook.com/?ref=logo#!/apps/application.php?id=2436915755&v=info&ref=appd

Another Xss vuln found :)

The steps are

1.http://apps.facebook.com/stevenlu/?tab=index&display=add

2.http://apps.facebook.com/stevenlu/?tab=index&display=add&method=youtube&confirm&videoId=SgM3r8xKfGE

Once done go on with your xss scripts :D
for example :

">< script>alert("w00t")< /script>

here is screen shot :