I actually used Inline Javascript on a real website!

General technological topics without their own forum go here

I actually used Inline Javascript on a real website!

Post by gluttard on Sat Jul 19, 2008 3:30 pm
([msg=7842]see I actually used Inline Javascript on a real website![/msg])

I was browsing C++ code on some website, when all of a sudden it tells me that I've viewed 5 pages of code, and that if I want to view more I'll have to make an account. Well, I didn't want to waste a minute of my life making some random account, so I checked the cookies (javascript:alert(document.cookie)).

Sure enough, one came up with a value of 5. Just to make sure it was the one, I refreshed the page and checked again, its value was now 6.

I simply changed the value of the cookie to 0, and read code in peace.
gluttard
New User
New User
 
Posts: 1
Joined: Sun Jun 29, 2008 3:45 pm
Blog: View Blog (0)


Re: I actually used Inline Javascript on a real website!

Post by muller2008 on Sun Jul 27, 2008 9:41 am
([msg=8400]see Re: I actually used Inline Javascript on a real website![/msg])

Snap! Did the same.......
muller2008
New User
New User
 
Posts: 37
Joined: Thu Jun 26, 2008 6:45 pm
Blog: View Blog (0)


Re: I actually used Inline Javascript on a real website!

Post by lathermiah on Sun Jul 27, 2008 11:11 am
([msg=8404]see Re: I actually used Inline Javascript on a real website![/msg])

muller2008 wrote:Snap! Did the same.......


Would this website happened to have been, planet source code? It asked me the same thing. But I didn't bother to use JavaScript. I just went to a different site.
lathermiah
New User
New User
 
Posts: 5
Joined: Sat Jul 19, 2008 2:30 pm
Blog: View Blog (0)


Re: I actually used Inline Javascript on a real website!

Post by doubleman on Mon Jul 28, 2008 12:37 pm
([msg=8551]see Re: I actually used Inline Javascript on a real website![/msg])

Everytime I see javascript cookies when I'm kinda practicing javascript injection, I get a bunch of numbers and letters. Are all cookies like that?

Nice job with the resourcefulness :)
doubleman
New User
New User
 
Posts: 30
Joined: Thu Jun 26, 2008 4:15 pm
Blog: View Blog (0)


Re: I actually used Inline Javascript on a real website!

Post by nathandelane on Mon Jul 28, 2008 12:52 pm
([msg=8554]see Re: I actually used Inline Javascript on a real website![/msg])

This is pretty common for sites that you sign into. They usually keep a session cookie, or store the session ID into the cookie. That is probably what the large numbers and letters are referring to. Some sites that you don't sign into also do this.

This is one example:
Code: Select all
Research%20Selector%20State = %7B%22scopeKey%22%3A%22d5957096-29ed-4c0b-a145-287d06933057%22%2C%22bodyStyle%22%3Anull%2C%22year%22%3A%222008%22%2C%22make%22%3A%2216000000000012%22%2C%22model%22%3A%22170000000030E6%22%2C%22trim%22%3Anull%2C%22zip%22%3A%2284106%22%7D
Me, Nathandelane, Highly influential to Hackerdom, Premature Optimization=http://c2.com/cgi/wiki?PrematureOptimization
User avatar
nathandelane
Poster
Poster
 
Posts: 204
Joined: Thu Jun 26, 2008 11:26 am
Location: Utah
Blog: View Blog (0)



Return to General

Who is online

Users browsing this forum: No registered users and 0 guests