Finding and Exploiting Same Origin Method Execution vulnerabilities

Recently it came to my attention that it was possible to abuse JSONP callbacks using a vulnerability known as SOME – Same Origin Method Execution which can be used by an attacker to widely abuse a user’s trust between the web application and the intended flow of execution. For example, using the SOME attack it is possible for an attacker to trick a user to visiting a malicious web-page which…

Internet Explorer XSS Filter bypass

I always love the XSS technique, it has sometimes that makes the generation of the payload something close to art, where code and creativity found. I found this quick trick to bypass the IE filter when the output is write inside script tags: “;alert(document.cookie%2b%0dwindow);// This works because the filter is looking for document.cookie but inserting the %2b (a + symbol) and %0d (a new line character) it will still render…