ioc[.]one - OSINT Cyber Threat Intelligence Database

Detecting and exploiting path-relative stylesheet import (PRSSI) vulnerabilities

Tags

attack-pattern:

Ip Addresses - T1590.005 Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Connection Proxy - T1090 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	9315b36a-9387-480b-896a-40834f746088
Fingerprint	d429f998d33110d
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 17, 2015, 3:48 p.m.
Added to db	Jan. 18, 2023, 10:10 p.m.
Last updated	Nov. 17, 2024, 11:40 p.m.
Headline	Detecting and exploiting path-relative stylesheet import (PRSSI) vulnerabilities
Title	Detecting and exploiting path-relative stylesheet import (PRSSI) vulnerabilities
Detected Hints/Tags/Attributes	50/1/43

Source URLs

	Redirection	Url
Details	Source	https://portswigger.net/blog/detecting-and-exploiting-path-relative-stylesheet-import-prssi-vulnerabilities

URL Provider

Details	Provider	Source level domain
Details	portswigger.net	portswigger.net

Attributes

Details	Type	#Events	Value
Details	CVE	1	cve-2015-1431
Details	Domain	831	example.com
Details	Domain	1	hsivonen.fi
Details	Domain	29	yourdomain.com
Details	Domain	70	evil.com
Details	Domain	2	eaea.sirdarckcat.net
Details	Domain	1	html5sec.org
Details	Domain	1	www.syssec.rub.de
Details	Domain	1	scarybeastsecurity.blogspot.co.uk
Details	Domain	121	portswigger.net
Details	File	5	viewforum.php
Details	File	2	print.css
Details	File	61	search.php
Details	File	13	feed.php
Details	File	50	www.sys
Details	File	1	scriptlessattacks-ccs2012.pdf
Details	File	1	generic-cross-browser-cross-domain.html
Details	File	1206	index.php
Details	File	7	style.php
Details	File	2	ps.css
Details	File	47	index.jsp
Details	md5	1	6a37bda1ee5b560e1e70395cfb8b11d8
Details	IPv4	1	192.168.181.149
Details	Url	1	http://example.com/phpbb3/viewforum.php?f=2
Details	Url	1	http://example.com/phpbb3
Details	Url	1	http://example.com/phpbb3/viewforum.php/anything/here?f=2
Details	Url	1	http://example.com/phpbb3/viewforum.php/anything/styles
Details	Url	1	https://hsivonen.fi/doctype
Details	Url	1	http://example.com/phpbb3/viewforum.php/foo/bar
Details	Url	1	http://example.com/phpbb3/search.php
Details	Url	1	http://eaea.sirdarckcat.net/cssar/v2
Details	Url	1	http://html5sec.org/webkit/test.
Details	Url	1	http://www.syssec.rub.de/media/emma/veroeffentlichungen/2012/08/16/scriptlessattacks-ccs2012.pdf
Details	Url	1	http://channel9.msdn.com/events/blue-hat-security-briefings/bluehat-security-briefings-fall-2012-sessions/bh1203
Details	Url	1	http://html5sec.org/cssession
Details	Url	1	http://scarybeastsecurity.blogspot.co.uk/2009/12/generic-cross-browser-cross-domain.html
Details	Url	1	http://example.com/phpbb3/adm/index.php
Details	Url	1	http://example.com/phpbb3/adm/index.php?sid=6a37bda1ee5b560e1e70395cfb8b11d8
Details	Url	1	http://192.168.181.149/phpbb3/adm/index.php/%0c%7b%7d%0c@import%09%27/////portswigger.net/css/ps.css
Details	Url	1	http://html5sec.org/#45
Details	Url	1	http://192.168.181.149/phpbb3/adm/index.php
Details	Url	1	http://portswigger.net/css/ps.css
Details	Url	1	http://example.com/index.jsp