[B! XSS] ikd9684ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

ikd9684 id:ikd9684

XSSã«é–¢ã™ã‚‹ikd9684ã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (7)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

https://www.saitolab.org/taiken/
ikd9684 2016/05/08
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

XSS

CSRF

SQL-Injection
ãƒªãƒ³ã‚¯
hiddenãªinputè¦ç´ ã®XSSã§JavaScriptå®Ÿè¡Œ
è„†å¼±æ€§è¨ºæ–ã‚’ã‚„ã£ã¦ã„ã‚‹ã¨ã€ãŸã¾ã«type=hiddenã®inputè¦ç´ ã«XSSãŒã‚ã‚‹ã‘ã©ã€ç¾å®Ÿçš„ãªæ”»æ’ƒã«ã¯è‡³ã‚‰ãªã„ã‚‚ã®ã«ã¶ã¡ã‚ãŸã‚‹ã“ã¨ãŒã‚ã‚Šã¾ã™ã€‚ã‚µãƒ³ãƒ—ãƒ«ã‚³ãƒ¼ãƒ‰ã‚’ä»¥ä¸‹ã«ç¤ºã—ã¾ã™ã€‚ <body> å…¥åŠ›ç¢ºèªã‚’ãŠé¡˜ã„ã—ã¾ã™ã€‚ <?php echo htmlspecialchars($_GET['t']); ?><br> <form action='submit.php'> <input type='hidden' name='t' value='<?php echo htmlspecialchars($_GET['t']); ?>'> <input type='submit'> </body> æ£å¸¸ç³»ã®å‘¼ã³å‡ºã—ã¯ä¸‹è¨˜ã®ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚ http://example/hidden-xss.php?t=yamada HTMLã‚½ãƒ¼ã‚¹ã¯ä¸‹è¨˜ã®é€šã‚Šã§ã™ã€‚ <body> å…¥åŠ›ç¢ºèªã‚’ãŠé¡˜ã„ã—ã¾ã™ã€‚ yamad
ikd9684 2016/04/14
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

XSS
ãƒªãƒ³ã‚¯
è‰²ã‚“ãªXSS â€“ nootropic.me
2015/4/16(æœ¨)ï¼šãƒšãƒ¼ã‚¸ã®ä¸€ç•ªä¸‹ã«è¿½è¨˜ã‚’è¨˜è¿°ã—ã¾ã—ãŸã€‚ ãã®æ˜”ã€ãªã‚“ã¨ã‹ã‚ãƒ£ãƒ³ãƒ—ã¨ã„ã†ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ã‚¤ãƒ™ãƒ³ãƒˆã«å‚åŠ ã—ãŸæ™‚ã€Œã‚¢ã‚¦ãƒˆãƒ—ãƒƒãƒˆãŒå¤§äº‹ã€ã¨è¨€ã‚ã‚ŒãŸã®ã‚’æ€ã„å‡ºã—ã¾ã—ãŸã€‚ ã§ã‚‚ã€æ™®é€šè‡ªåˆ†ã®è¦‹ã¤ã‘ãŸçŸ¥è˜ã¯å¾Œç”Ÿå¤§äº‹ã«æŠ±ãˆã¦ãŠããŸã„ã‚‚ã‚“ã ã¨æ€ã„ã¾ã™ã€‚ ãã“ã§ä»Šå›žã¯ãã†ã„ã£ãŸä½•ã‹ã—ã‚‡ãƒ¼ã‚‚ãªã„ã‚‚ã®ã‚’æ¨ã¦ã‚‹ã¹ãã€æºœã‚è¾¼ã‚“ã è‰²ã‚“ãªXSSã®PoCã‚’å°‘ã—æ›¸ãå‡ºã—ã¦ã¾ã¨ã‚ã¾ã—ãŸã€‚ ä»Šã¾ã§è‡ªåˆ†ã§è¦‹ã¤ã‘ãŸã‚‚ã®ã‚„æµ·å¤–ã®Security Researcheré”ã‹ã‚‰åŽé›†ã—ãŸã‚‚ã®ã‚‚ã‚ã‚Šã¾ã™ã€‚ ã•ã¦ã€ä»Šå›žãƒªã‚¹ãƒˆã‚¢ãƒƒãƒ—ã—ãŸPoCã®è¦‹æ–¹ã§ã™ãŒã„ãã¤ã‹ã®é …ç›®ãŒã‚ã‚Šã¾ã™ã€‚ ä¸€ç•ªä¸Šã®ã€Œæ‰‹æ³•ã€ã¯ã‚¿ã‚¤ãƒˆãƒ«ã¿ãŸã„ãªã‚‚ã®ã ã¨æ€ã£ã¦ä¸‹ã•ã„ã€‚ äºŒç•ªç›®ã®ã€ŒPoCã€ã¯ã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚’å®Ÿè¡Œã™ã‚‹ç‚ºã®ã‚³ãƒ¼ãƒ‰ã§ã™ã€‚æ®†ã©ãŒã‚¢ãƒ©ãƒ¼ãƒˆãŒå‡ºã‚‹ã ã‘ã®ã‚¹ã‚¯ãƒªãƒ—ãƒˆã®ç‚ºå±é™ºãªã‚³ãƒ¼ãƒ‰ã¯ç„¡ã„ã¤ã‚‚ã‚Šã§ã™ãŒã”è‡ªåˆ†ã®ãƒ–ãƒ©ã‚¦ã‚¶ã§å®Ÿè¡Œã™ã‚‹éš›ã¯è‡ªå·±è²¬ä»»ã§ãŠé¡˜ã„ã—ã¾ã™ã€‚ãƒªãƒ³ã‚¯ã‚’ã‚¯ãƒªãƒƒ
ikd9684 2015/04/14
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

XSS
ãƒªãƒ³ã‚¯
Masato Kinugawa Security Blog: ãŸã¶ã‚“XSSãŒç†ç”±ã§ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆãŒã¨ã¾ã£ãŸ
æ˜”è‡ªåˆ†ãŒåˆ©ç”¨è€…ã ã£ãŸã‚µã‚¤ãƒˆã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å•é¡Œ(XSS)ã‚’ã„ãã¤ã‹å ±å‘Šã—ã¦ã„ãŸã®ã§ã™ãŒã€ãŠãã‚‰ããã®ãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’ç†ç”±ã«ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆãŒä½¿ãˆãªããªã‚Šã¾ã—ãŸã€‚ãƒ—ãƒãƒã‚¤ãƒ€ã«æŽ¥ç¶šã‚’æ¢ã‚ã‚‰ã‚ŒãŸã®ã§ã™ã€‚ ãã®ã‚µã‚¤ãƒˆã§å•é¡Œã‚’ã¿ã¤ã‘ãŸã¨ãã€ã‚µãƒ¼ãƒ“ã‚¹æä¾›è€…å´ã®åå¿œã‚’ç¤ºã™å…†å€™ãŒã‚ã‚Šã¾ã—ãŸã€‚ å•é¡Œã‚’ç™ºè¦‹å¾Œã€ã—ã°ã‚‰ãã—ã¦ã‚¢ã‚¯ã‚»ã‚¹ã—ã‚ˆã†ã¨ã™ã‚‹ã¨ã€ã‚¢ã‚¯ã‚»ã‚¹ã‚’æ‹’å¦ã•ã‚ŒãŸã‹ã‚‰ã§ã™ã€‚ ã‚µãƒ¼ãƒ“ã‚¹æä¾›è€…ã«ã¯å•é¡Œã‚’å ±å‘Šã—ã€ã‚¢ã‚¯ã‚»ã‚¹æ‹’å¦ã«ã¤ã„ã¦ã‚‚ã€ä¸€å¿œã€ä»Šå ±å‘Šã—ã¦ã‚‹é€šã‚Šã“ã‚Œã¯æ”»æ’ƒã§ã¯ãªã„ã®ã§èª¤è§£ãªãã‚ˆã†ã‚ˆã‚ã—ãã¨ãƒ¡ãƒ¼ãƒ«é€£çµ¡ã—ãŸã¨ã“ã‚ã€å•é¡Œã¯ä¿®æ£ã•ã‚Œã¾ã—ãŸã€‚ ã“ã‚Œã§çœŸæ„ã¯ä¼ã‚ã‚Šã€ã‚¢ã‚¯ã‚»ã‚¹ã¨é–¢é€£ä»˜ã‘ã‚‰ã‚Œã€ã‚¢ã‚¯ã‚»ã‚¹æ‹’å¦ã«å¯¾ã™ã‚‹èª¤è§£ã‚‚è§£æ±ºã—ãŸã ã‚ã†ã¨æ€ã£ãŸã®ã§ã™ãŒã€ãã®å¾Œæ€¥ã«ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆãŒä½¿ãˆãªã„äº‹æ…‹ã«ã¾ã§ãªã‚‹ã¨ã¯ã ã‚ŒãŒäºˆæƒ³ã§ããŸã§ã—ã‚‡ã†ã‹â€¦ã€‚(ä»Šã¯æºå¸¯ã®å›žç·šã‚’ä½¿ã£ã¦ã„ã¾ã™) ãƒ—ãƒãƒã‚¤ãƒ€ã‹ã‚‰æ›¸é¢ãŒå±Šãã€æ›¸é¢ã«ã¯å•é¡Œã®å ±å‘Šæ™‚ã¨ã»ã¼åŒã˜æ—¥ä»˜ã«
ikd9684 2013/09/11
ãƒ™ãƒãƒƒã‚»ã•ãƒ¼ã‚“ï¼Ÿ

XSS

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
XSSå†å…¥é–€
9/14ã«ãƒªãƒªãƒ¼ã‚¹ã•ã‚ŒãŸã°ã‹ã‚Šã®æ–°LTSç‰ˆJava 17ã€ã“ã“3å¹´é–“ã®Javaã®å¤‰åŒ–ã‚’çŸ¥ã‚ã†ï¼ï¼ˆOpen Source Conference 2021 O...
ikd9684 2013/08/26
XSS

slideshare

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ - ã¯ã¦ãªã®å‘ŠçŸ¥
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ ä»¥ä¸‹ã®ã‚¨ãƒ³ãƒˆãƒªã®é€šã‚Šã€ä»Šå¹´æœ«ã‚’ç›®å‡¦ã«ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã‚’çµ‚äº†äºˆå®šã§ã‚ã‚‹æ—¨ã‚’ãŠçŸ¥ã‚‰ã›ã—ã¦ãŠã‚Šã¾ã—ãŸã€‚ 2019å¹´æœ«ã‚’ç›®å‡¦ã«ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®æä¾›ã‚’çµ‚äº†ã™ã‚‹äºˆå®šã§ã™ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã“ã®ãŸã³ã€æ£å¼ã«çµ‚äº†æ—¥ã‚’æ±ºå®šã„ãŸã—ã¾ã—ãŸã®ã§ã€ä»¥ä¸‹ã®é€šã‚Šã”ç¢ºèªãã ã•ã„ã€‚ çµ‚äº†æ—¥: 2020å¹´1æœˆ31æ—¥(é‡‘) ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆå¸Œæœ›ç”³è«‹æœŸé™:2020å¹´1æœˆ31æ—¥(é‡‘) çµ‚äº†æ—¥ä»¥é™ã¯ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®é–²è¦§ãŠã‚ˆã³æŠ•ç¨¿ã¯è¡Œãˆã¾ã›ã‚“ã€‚æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãŒå¿…è¦ãªæ–¹ã¯ä»¥ä¸‹ã®è¨˜äº‹ã«ã—ãŸãŒã£ã¦æ‰‹ç¶šãã‚’ã—ã¦ãã ã•ã„ã€‚ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã«æŠ•ç¨¿ã•ã‚ŒãŸæ—¥è¨˜ãƒ‡ãƒ¼ã‚¿ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆã«ã¤ã„ã¦ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã”åˆ©ç”¨ã®ã¿ãªã•ã¾ã«ã¯ã”è¿·æƒ‘ã‚’ãŠã‹ã‘ã„ãŸã—ã¾ã™ãŒã€ã©ã†ãžã‚ˆã‚ã—ããŠé¡˜ã„ã„ãŸã—ã¾ã™ã€‚ 2020-06-25 è¿½è¨˜ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãƒ‡ãƒ¼ã‚¿ã¯2020å¹´2æœˆ28
ikd9684 2011/07/01
jQuery

XSS

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

JavaScript
ãƒªãƒ³ã‚¯
Kazuho@Cybozu Labs: (Twitter ã® XSS è„†å¼±æ€§ã«é–¢é€£ã—ã¦) æ§‹é€ åŒ–ãƒ†ã‚ã‚¹ãƒˆã®æ£ã—ã„ã‚¨ã‚¹ã‚±ãƒ¼ãƒ—æ‰‹æ³•ã«ã¤ã„ã¦
æ˜¨æ—¥ã® Twitter ã® XSS é¨’ãŽã¯ã€ã¾ã çš†ã•ã‚“ã®è¨˜æ†¶ã«æ–°ã—ã„ã“ã¨ã¨æ€ã„ã¾ã™ã€‚ã„ã„æ©Ÿä¼šãªã®ã§ã€ãƒ„ã‚¤ãƒ¼ãƒˆã®ã‚ˆã†ãªæ§‹é€ åŒ–ãƒ†ã‚ã‚¹ãƒˆã®ã‚¨ã‚¹ã‚±ãƒ¼ãƒ—æ‰‹æ³•ã«ã¤ã„ã¦è§¦ã‚Œã¦ãŠããŸã„ã¨æ€ã„ã¾ã™ã€‚ Twitter ã®ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ã¯ã€å˜ãªã‚‹å¹³æ–‡ï¼ˆãƒ—ãƒ¬ã‚¤ãƒ³ãƒ†ã‚ã‚¹ãƒˆï¼‰ã§ã¯ãªãã€ã€Œ@è‹±æ•°å—ã€ã®ã‚ˆã†ãªä»–ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼ã¸ã®è¨€åŠã¨ã€Œhttp://ã€œã€ã®ã‚ˆã†ãª URL ã‚’è‡ªå‹•çš„ã«ãƒã‚¤ãƒ‘ãƒ¼ãƒªãƒ³ã‚¯åŒ–ã™ã‚‹æ§‹é€ åŒ–ãƒ†ã‚ã‚¹ãƒˆã§ã™ã€‚ ã“ã®ã‚ˆã†ãªè¤‡æ•°ã®ãƒ«ãƒ¼ãƒ«ã‚’ã‚‚ã¤æ§‹é€ åŒ–ãƒ†ã‚ã‚¹ãƒˆã‚’ HTML åŒ–ã™ã‚‹éš›ã«ã¯ã€ã©ã®ã‚ˆã†ãªã‚³ãƒ¼ãƒ‰ã‚’æ›¸ã‘ã°ã„ã„ã®ã§ã—ã‚‡ã†ï¼Ÿã€€ã¾ãšã€Œ@ã€œã€ã‚’ãƒªãƒ³ã‚¯åŒ–ã—ã¦ã‹ã‚‰ã€URL ã‚’ãƒªãƒ³ã‚¯åŒ–ã™ã‚Œã°ã„ã„ã®ã§ã—ã‚‡ã†ã‹ï¼Ÿã€€ãã‚Œã ã¨ã€@ã€œ ã®ã‚’ãƒªãƒ³ã‚¯åŒ–ã—ãŸ A HREF ã‚¿ã‚°ã®ä¸ã® URL ãŒã•ã‚‰ã«ãƒªãƒ³ã‚¯åŒ–ã•ã‚Œã¦ã„ã¾ã„ã¾ã™ãã€‚ ã§ã¯ã€URL ã‚’ãƒªãƒ³ã‚¯åŒ–ã—ã¦ã‹ã‚‰ @ã€œ ã‚’ãƒªãƒ³ã‚¯åŒ–ã™ã‚Œã°ã„ã„ã®ã§ã—ã‚‡ã†ã‹ï¼Ÿã€€ãã‚Œã ã¨ã€@ ã‚’å«ã‚€ URL ãŒã‚ã£ãŸå ´åˆã«
ikd9684 2011/03/26
html

XSS

security

web

escape
ãƒªãƒ³ã‚¯
1