Even uploading a JPG file can lead to Cross-Site Content Hijacking (client-side attack)! | Soroush Dalili (@irsdl) – سروش دلیلی
Tags
attack-pattern: Data Javascript - T1059.007 Malicious File - T1204.002 Malicious Link - T1204.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID af225a08-db1f-441c-bedb-e0c70eae5bd1
Fingerprint d487a2225973578d
Analysis status DONE
Considered CTI value 0
Text language
Published May 21, 2014, 4:28 p.m.
Added to db Jan. 18, 2023, 10:28 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline Soroush Dalili (@irsdl) – سروش دلیلی
Title Even uploading a JPG file can lead to Cross-Site Content Hijacking (client-side attack)! | Soroush Dalili (@irsdl) – سروش دلیلی
Detected Hints/Tags/Attributes 39/1/32
Source URLs
Redirection Url
Details Source https://soroush.secproject.com/blog/2014/05/even-uploading-a-jpg-file-can-lead-to-cross-domain-data-hijacking-client-side-attack/
URL Provider
Details Provider Source level domain
Details secproject.com soroush.secproject.com
Attributes
Details Type #Events CTI Value
Details Domain 19 
www.acunetix.com
Details Domain 1 
dunnesec.com
Details Domain 4128 
github.com
Details Domain 1 
bounty.github.com
Details Domain 2 
blog.detectify.com
Details Domain 1 
0me.me
Details Domain 1 
sdl.me
Details Domain 1 
crossdomaindatahijack.as
Details Domain 1 
soroush.me
Details Domain 22 
victim.com
Details File 1 
adob.html
Details File 1 
objectmimetype.html
Details File 1 
crossdomaindatahijack.jpg
Details File 1 
as.txt
Details File 1 
secret.asp
Details File 23 
crossdomain.xml
Details File 1 
crossdomaindatahijackhelper.html
Details Github username 33 
nccgroup
Details Github username 1 
researchers
Details IPv4 1 
50.56.33.56
Details Url 1 
https://www.acunetix.com/vulnerabilities/web/cross-domain-data-hijacking
Details Url 1 
https://dunnesec.com/2014/05/26/cross-domain-hijack-flash-file-upload-vulnerability
Details Url 1 
https://github.com/nccgroup/crosssitecontenthijacking
Details Url 1 
http://50.56.33.56/blog/?p=242
Details Url 1 
https://bounty.github.com/researchers/adob.html
Details Url 1 
http://blog.detectify.com/post/86298380233/the-pitfalls-of-allowing-file-uploads-on-your-website
Details Url 1 
http://0me.me/demo/sop/objectmimetype.html
Details Url 1 
http://sdl.me/pocs/crossdomaindatahijack.jpg
Details Url 1 
http://0me.me/demo/sop/crossdomaindatahijack.as.txt
Details Url 1 
http://sdl.me/pocs/secret.asp?mysecret=original
Details Url 1 
http://sdl.me/crossdomain.xml
Details Url 1 
http://0me.me/demo/sop/crossdomaindatahijackhelper.html