[B! xss] Layzieã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

Layzie id:Layzie

xssã«é–¢ã™ã‚‹Layzieã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (16)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

mXSS
mXSS Tuesday, 6 May 2014 Mutation XSS was coined by me and Mario Heiderich to describe an XSS vector that is mutated from a safe state into an unsafe unfiltered state. The most common form of mXSS is from incorrect reads of innerHTML. A good example of mXSS was discovered by Mario where the listing element mutated its contents to execute XSS. <listing><img src=1 onerror=alert(1)></listing> W
Layzie 2014/05/08
security

xss

development
ãƒªãƒ³ã‚¯
å˜ç´”ã§ã¯ãªã„ã€æœ€æ–°ã€Œã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚°ã€äº‹æƒ…
å˜ç´”ã§ã¯ãªã„ã€æœ€æ–°ã€Œã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚°ã€äº‹æƒ…ï¼šHTML5æ™‚ä»£ã®ã€Œæ–°ã—ã„ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ»ã‚¨ãƒã‚±ãƒƒãƒˆã€ï¼ˆ2ï¼‰ï¼ˆ1/3 ãƒšãƒ¼ã‚¸ï¼‰ é€£è¼‰ç›®æ¬¡ çš†ã•ã‚“ã“ã‚“ã«ã¡ã¯ã€‚ãƒãƒƒãƒˆã‚¨ãƒ¼ã‚¸ã‚§ãƒ³ãƒˆã®ã¯ã›ãŒã‚ã‚ˆã†ã™ã‘ã§ã™ã€‚ç¬¬1å›žç›®ã¯ã€Webã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®å¢ƒç•Œæ¡ä»¶ã§ã‚ã‚‹ã‚ªãƒªã‚¸ãƒ³ã¨ã„ã†æ¦‚å¿µã«ã¤ã„ã¦èª¬æ˜Žã—ã¾ã—ãŸã€‚ ç¾åœ¨ã®Webãƒ–ãƒ©ã‚¦ã‚¶ãƒ¼ã§ã¯ã€åŒä¸€ã‚ªãƒªã‚¸ãƒ³ã®ãƒªã‚½ãƒ¼ã‚¹ã¯åŒã˜ä¿è·ç¯„å›²ã«ã‚ã‚‹ã‚‚ã®ã¨ã—ã€ã‚ªãƒªã‚¸ãƒ³ã‚’è¶…ãˆãŸã‚¢ã‚¯ã‚»ã‚¹ã«ã¤ã„ã¦ã¯ãƒªã‚½ãƒ¼ã‚¹ã®æä¾›å…ƒãŒæ˜Žç¤ºçš„ã«è¨±å¯ã—ãªã„é™ã‚Šã¯ã‚¢ã‚¯ã‚»ã‚¹ã§ããªã„ã¨ã„ã†ã€ã€ŒåŒä¸€ã‚ªãƒªã‚¸ãƒ³ãƒãƒªã‚·ãƒ¼ï¼ˆSame-Origin Policyï¼‰ã€ã«å¾“ã£ã¦ãƒªã‚½ãƒ¼ã‚¹ã‚’ä¿è·ã—ã¦ã„ã¾ã™ã€‚ ãã®ä¿è·ç¯„å›²ã§ã‚ã‚‹ã‚ªãƒªã‚¸ãƒ³ã‚’è¶…ãˆã€ãƒªã‚½ãƒ¼ã‚¹ã«ã‚¢ã‚¯ã‚»ã‚¹ã™ã‚‹æ”»æ’ƒã®ä»£è¡¨äº‹ä¾‹ã§ã‚ã‚‹ã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚°ï¼ˆXSSï¼‰ã«ã¤ã„ã¦ã€ä»Šå›žã€ãŠã‚ˆã³æ¬¡å›žã®2å›žã«åˆ†ã‘ã€HTML5ã«ãŠã„ã¦ã‚ˆã‚Šé«˜åº¦åŒ–ã•ã‚ŒãŸæ”»æ’ƒã¨ã€ãã®å¯¾ç–ã‚’èª¬æ˜Žã—ã¾
Layzie 2013/12/18
security

xss

javascript

html5

development
ãƒªãƒ³ã‚¯
XSS with location.href behavior of some browsers Â· Issue #4787 Â· jquery-archive/jquery-mobile
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
Layzie 2012/08/08
xss

mobile

security

javascript
ãƒªãƒ³ã‚¯
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ - ã¯ã¦ãªã®å‘ŠçŸ¥
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ ä»¥ä¸‹ã®ã‚¨ãƒ³ãƒˆãƒªã®é€šã‚Šã€ä»Šå¹´æœ«ã‚’ç›®å‡¦ã«ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã‚’çµ‚äº†äºˆå®šã§ã‚ã‚‹æ—¨ã‚’ãŠçŸ¥ã‚‰ã›ã—ã¦ãŠã‚Šã¾ã—ãŸã€‚ 2019å¹´æœ«ã‚’ç›®å‡¦ã«ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®æä¾›ã‚’çµ‚äº†ã™ã‚‹äºˆå®šã§ã™ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã“ã®ãŸã³ã€æ£å¼ã«çµ‚äº†æ—¥ã‚’æ±ºå®šã„ãŸã—ã¾ã—ãŸã®ã§ã€ä»¥ä¸‹ã®é€šã‚Šã”ç¢ºèªãã ã•ã„ã€‚ çµ‚äº†æ—¥: 2020å¹´1æœˆ31æ—¥(é‡‘) ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆå¸Œæœ›ç”³è«‹æœŸé™:2020å¹´1æœˆ31æ—¥(é‡‘) çµ‚äº†æ—¥ä»¥é™ã¯ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®é–²è¦§ãŠã‚ˆã³æŠ•ç¨¿ã¯è¡Œãˆã¾ã›ã‚“ã€‚æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãŒå¿…è¦ãªæ–¹ã¯ä»¥ä¸‹ã®è¨˜äº‹ã«ã—ãŸãŒã£ã¦æ‰‹ç¶šãã‚’ã—ã¦ãã ã•ã„ã€‚ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã«æŠ•ç¨¿ã•ã‚ŒãŸæ—¥è¨˜ãƒ‡ãƒ¼ã‚¿ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆã«ã¤ã„ã¦ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã”åˆ©ç”¨ã®ã¿ãªã•ã¾ã«ã¯ã”è¿·æƒ‘ã‚’ãŠã‹ã‘ã„ãŸã—ã¾ã™ãŒã€ã©ã†ãžã‚ˆã‚ã—ããŠé¡˜ã„ã„ãŸã—ã¾ã™ã€‚ 2020-06-25 è¿½è¨˜ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãƒ‡ãƒ¼ã‚¿ã¯2020å¹´2æœˆ28
Layzie 2012/04/27
jquery

xss

security

development
ãƒªãƒ³ã‚¯
æƒ…å ±å‡¦ç†è©¦é¨“å•é¡Œã«å¦ã¶JavaScriptã®XSSå¯¾ç–
æŒ‡æ‘˜äº‹é …Aä¸ã®(a)ã¯ã€ä»–ã‚’è¦‹ãªãã¦ã‚‚ã€Œã‚»ã‚ãƒ¥ã‚¢ã€å±žæ€§ã ã¨åˆ†ã‹ã‚Šã¾ã™ãã€‚å¾³ä¸¸æœ¬ï¼ˆä½“ç³»çš„ã«å¦ã¶ å®‰å…¨ãªWebã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ä½œã‚Šæ–¹ï¼‰ã§ã¯ã€4.8.2ã‚¯ãƒƒã‚ãƒ¼ã®ã‚»ã‚ãƒ¥ã‚¢å±žæ€§ä¸å‚™(P209)ã«èª¬æ˜ŽãŒã‚ã‚Šã¾ã™ã€‚ æŒ‡æ‘˜äº‹é …Bã¯ã€ã“ã“ã ã‘èªã‚€ã¨ã€XSSã®ã‚ˆã†ã§ã‚‚ã‚ã‚Šã€ã‚µãƒ¼ãƒãƒ¼ã‚µã‚¤ãƒ‰ã®ã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚¤ãƒ³ã‚¸ã‚§ã‚¯ã‚·ãƒ§ãƒ³ã®ã‚ˆã†ã§ã‚‚ã‚ã‚Šã¾ã™ãŒã€æ¤œæŸ»ãƒã‚°ã‹ã‚‰XSSã§ã‚ã‚‹ã“ã¨ãŒã‚ã‹ã‚Šã¾ã™ï¼ˆä¸‹å›³ã¯IPAã‹ã‚‰ã®å¼•ç”¨ï¼‰ã€‚XSSã¯ã€å¾³ä¸¸æœ¬4.3.1ã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚°ï¼ˆåŸºæœ¬ç·¨ï¼‰ã¨4.3.2ã‚¯ãƒã‚¹ã‚µã‚¤ãƒˆã‚¹ã‚¯ãƒªãƒ—ãƒ†ã‚£ãƒ³ã‚°ï¼ˆç™ºå±•ç·¨ï¼‰ã«ã¦èª¬æ˜Žã—ã¦ã„ã¾ã™ã€‚ ã“ã“ã¾ã§ã¯ã€ã”ãåŸºæœ¬çš„ãªå•é¡Œã§ã™ãŒã€å•é¡Œæ–‡P6ã«å‡ºã¦ãã‚‹ä»¥ä¸‹ã®éƒ¨åˆ†ã¯ã€å°‘ã—ã ã‘ã²ãã£ã¦ã¾ã™ãã€‚ ã“ã®ãƒ—ãƒã‚°ãƒ©ãƒ ã¯ã€åˆ©ç”¨è€…ãŒå…¥åŠ›ã—ãŸæ–‡å—åˆ—ã‚’ãƒ€ã‚¤ã‚¢ãƒã‚°ã«è¡¨ç¤ºã™ã‚‹ãŸã‚ã«ã€å—ã‘å–ã£ãŸãƒ‘ãƒ©ãƒ¡ã‚¿ã®å€¤ã‚’ã‚¹ã‚¯ãƒªãƒ—ãƒˆã«åŸ‹ã‚è¾¼ã¿ã€å‹•çš„ã«ã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚’ç”Ÿæˆã™ã‚‹ã€‚å›³4ã®( Â c Â Â )è¡Œç›®ã§ã¯
Layzie 2012/04/16
security

xss

javascript

development
ãƒªãƒ³ã‚¯
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ - ã¯ã¦ãªã®å‘ŠçŸ¥
ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®çµ‚äº†æ—¥ã‚’2020å¹´1æœˆ31æ—¥(é‡‘)ã«æ±ºå®šã—ã¾ã—ãŸ ä»¥ä¸‹ã®ã‚¨ãƒ³ãƒˆãƒªã®é€šã‚Šã€ä»Šå¹´æœ«ã‚’ç›®å‡¦ã«ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã‚’çµ‚äº†äºˆå®šã§ã‚ã‚‹æ—¨ã‚’ãŠçŸ¥ã‚‰ã›ã—ã¦ãŠã‚Šã¾ã—ãŸã€‚ 2019å¹´æœ«ã‚’ç›®å‡¦ã«ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®æä¾›ã‚’çµ‚äº†ã™ã‚‹äºˆå®šã§ã™ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã“ã®ãŸã³ã€æ£å¼ã«çµ‚äº†æ—¥ã‚’æ±ºå®šã„ãŸã—ã¾ã—ãŸã®ã§ã€ä»¥ä¸‹ã®é€šã‚Šã”ç¢ºèªãã ã•ã„ã€‚ çµ‚äº†æ—¥: 2020å¹´1æœˆ31æ—¥(é‡‘) ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆå¸Œæœ›ç”³è«‹æœŸé™:2020å¹´1æœˆ31æ—¥(é‡‘) çµ‚äº†æ—¥ä»¥é™ã¯ã€ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã®é–²è¦§ãŠã‚ˆã³æŠ•ç¨¿ã¯è¡Œãˆã¾ã›ã‚“ã€‚æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãŒå¿…è¦ãªæ–¹ã¯ä»¥ä¸‹ã®è¨˜äº‹ã«ã—ãŸãŒã£ã¦æ‰‹ç¶šãã‚’ã—ã¦ãã ã•ã„ã€‚ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—ã«æŠ•ç¨¿ã•ã‚ŒãŸæ—¥è¨˜ãƒ‡ãƒ¼ã‚¿ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆã«ã¤ã„ã¦ - ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ ã”åˆ©ç”¨ã®ã¿ãªã•ã¾ã«ã¯ã”è¿·æƒ‘ã‚’ãŠã‹ã‘ã„ãŸã—ã¾ã™ãŒã€ã©ã†ãžã‚ˆã‚ã—ããŠé¡˜ã„ã„ãŸã—ã¾ã™ã€‚ 2020-06-25 è¿½è¨˜ ã¯ã¦ãªã‚°ãƒ«ãƒ¼ãƒ—æ—¥è¨˜ã®ã‚¨ã‚¯ã‚¹ãƒãƒ¼ãƒˆãƒ‡ãƒ¼ã‚¿ã¯2020å¹´2æœˆ28
Layzie 2012/04/05
xss

javascript

security

development
ãƒªãƒ³ã‚¯
http://blog.monoweb.info/article/2012031523.html
Layzie 2012/03/17
xss

security

javascript

development

browser
ãƒªãƒ³ã‚¯
XHR XSS ã®è©±ï¼Ž - ã»ã‚€ã‚‰ã¡ã‚ƒã»ã‚€ã»ã‚€
æ¦‚è¦ CORS ãŒã€Œå¹¾ã¤ã‹ã®ãƒ–ãƒ©ã‚¦ã‚¶ã®å…ˆè¡Œå®Ÿè£…ã€ã®çŠ¶æ³ã‹ã‚‰ã€Œå¤ã„ãƒ–ãƒ©ã‚¦ã‚¶ã§ã¯ã‚µãƒãƒ¼ãƒˆã•ã‚Œãªã„æ©Ÿèƒ½ã€ã«å¤‰ã‚ã‚Šã¤ã¤ã‚ã‚‹é ƒåˆã„ãªã®ã§ï¼ŒXHR2 ãŒ XSS ã®èµ·ç‚¹ã«ãªã‚Šã¾ã™ã‚ˆã£ã¦ãŠè©±ï¼Ž ãã‚‚ãã‚‚ XHR XSS ã£ã¦ä½•ã‚ˆ ç°¡å˜ã«è¨€ã†ã¨XHR2 ã«ã‚ˆã‚‹ XSS ã®ã“ã¨ã®ã¤ã‚‚ã‚Šï¼Žèº«è¿‘ãªã¨ã“ã‚ã ã¨ï¼ŒjQuery Mobile ãŒã‚„ã‚‰ã‹ã—ãŸã‚Šï¼Œå¤§é˜ªåºœè¦ãŒã‚„ã‚‰ã‹ã—ãŸã‚Šã—ãŸï¼Ž å…·ä½“ä¾‹1 jQuery Mobile jQuery Mobile ã«ã¤ã„ã¦ã¯ï¼ŒjQuery Mobileã®XSSã«ã¤ã„ã¦ã®è§£èª¬ ã§è§£èª¬ã•ã‚Œã‚‹ã¨ãŠã‚Šï¼Ž ã‹ã„ã¤ã¾ã‚“ã§è¨€ã†ã¨ï¼ŒjQuery Mobile ã« location.hash ã®å¤‰æ›´( hashchange ã‚¤ãƒ™ãƒ³ãƒˆç™ºç«ï¼‰æ™‚ã«ï¼Œlocation.hash ã‚’ URL ã¨ã¿ãªã—ã¦èªè¾¼ã‚“ã§ï¼Œãƒšãƒ¼ã‚¸å†…å®¹ã‚’å¤‰æ›´ã¨ã„ã†æ©Ÿèƒ½ãŒã‚ã£ã¦ï¼Œãã®èªè¾¼å…ˆ URL ã«ã‚¯ãƒã‚¹ãƒ‰ãƒ¡ã‚¤ãƒ³ã®åˆ¶ç´„ãŒãªã‹ã£ãŸã®ã§ X
Layzie 2012/03/16
xss

security

javascript

development
ãƒªãƒ³ã‚¯
Masato Kinugawa Security Blog: Googleã®metaãƒªãƒ€ã‚¤ãƒ¬ã‚¯ãƒˆã«å˜åœ¨ã—ãŸå•é¡Œ
Googleã«å˜åœ¨ã—ãŸãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ã‚’çªƒå–ã§ããŸå•é¡Œã«ã¤ã„ã¦æ›¸ãã¾ã™ã€‚ã“ã‚Œã¯2011å¹´1æœˆ30æ—¥ã«å ±å‘Šã—ã€å ±å‘Šå¾Œæ•°æ—¥ä»¥å†…ã«ä¿®æ£ã•ã‚ŒãŸå•é¡Œã§ã™ã€‚ ã“ã‚“ãªãƒšãƒ¼ã‚¸ãŒã‚ã‚Šã¾ã—ãŸã€‚ http://example.google.com/redirect?continue=http://example.google.com/xyz <meta http-equiv="refresh" content="0;url='http://example.google.com/xyz'"> <script> location.replace("http://example.google.com/xyz") </script> continueã¨ã„ã†ãƒ‘ãƒ©ãƒ¡ãƒ¼ã‚¿ã«æŒ‡å®šã•ã‚ŒãŸURLã‚’metaã‚¿ã‚°ã¨location.replace()ã«ãã‚Œãžã‚Œå…¥ã‚Œã¦ã€JavaScriptã®æœ‰åŠ¹/ç„¡åŠ¹ã®è¨å®šã«é–¢ã‚ã‚‰ãšãƒªãƒ€ã‚¤
Layzie 2012/03/02
security

javascript

xss

google

ie
ãƒªãƒ³ã‚¯
yuga.jsã®XSSç›´ã—ãŸãƒãƒ¼ã‚¸ãƒ§ãƒ³ãŒãªã‹ãªã‹ãƒªãƒªãƒ¼ã‚¹ã•ã‚Œãªã„ã®ã§å‹æ‰‹ã«ç›´ã—ãŸã‚„ã¤
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
Layzie 2012/02/02
javascript

security

xss

development
ãƒªãƒ³ã‚¯
ma<s>atokinugawaã®æ—¥è¨˜
ma<s>atokinugawaã®æ—¥è¨˜
Layzie 2010/06/24
æ„›ã‚‚å‹¿è«–ã ã‘ã©ã€ãƒ¦ãƒ¼ã‚¶ãƒ¼ã®äº‹ã‚’è€ƒãˆã¦ã‚‹ã®ã‹ã©ã†ã‹ã£ã¦ã®ã‚‚é–¢ä¿‚ã™ã‚‹ã®ã‹ãª

xss

security

development
ãƒªãƒ³ã‚¯
ma<s>atokinugawaã®æ—¥è¨˜
ma<s>atokinugawaã®æ—¥è¨˜
Layzie 2010/06/23
xss

twitter

security
ãƒªãƒ³ã‚¯
ma<s>atokinugawaã®æ—¥è¨˜
ma<s>atokinugawaã®æ—¥è¨˜
Layzie 2010/06/17
hatena

security

xss
ãƒªãƒ³ã‚¯
ma<s>atokinugawaã®æ—¥è¨˜
ma<s>atokinugawaã®æ—¥è¨˜
Layzie 2010/05/30
ãƒã‚±ãƒƒãƒˆãƒžãƒãƒ¼ã¨ã„ã†ã®ãŒç”·æ°—æº€è¼‰ã§ã™ãã€‚ç´ æ™´ã—ã„ã€‚ãã—ã¦ã€äº¬éƒ½ã«æœ¬ç¤¾ã‚’ç½®ãHç¤¾ww

security

livedoor

xss
ãƒªãƒ³ã‚¯
ã¯ã¾ã¡ã¡ã‚ƒã‚“ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£è¬›åº§ ã“ã“ãŒã‚ãƒŸã®è„†å¼±ãªã¨ã“ã‚â€¦ï¼ï¼šç¬¬5å›žã€€ã“ã¾ã£ã¡ã‚ƒã†ãƒŠ XSSã«ãã‚‰ã‚ã‚Œã¦ï½œgihyo.jp â€¦ æŠ€è¡“è©•è«–ç¤¾
ï¼œå‰å›žã®ãŠè©±ï¼žã€€ä¸€é›£åŽ»ã£ã¦ã¾ãŸä¸€é›£â€¦ CSRFå¯¾ç–ã‚‚ã°ã£ã¡ã‚Šç†è§£ã—ã¦ã“ã‚Œã§ä¸‡å…¨ã¨æ€ã„ãã‚„ã€ã•ã‚‰ãªã‚‹ä¸Šæ‰‹ã€ŒXSSã€ã®ç™»å ´ã§ã™ã€‚å™‚ã§ã¯ã‚ã‚“ãªã“ã¨ã‚‚ã“ã‚“ãªã“ã¨ã‚‚ã§ãã¡ã‚ƒã†å‡„ã„ã‚„ã¤ã‚‰ã—ã„ã‘ã©ã€ã¯ãŸã—ã¦ãã®å®Ÿæ…‹ã¯!? æ•µã‚’çŸ¥ã‚Œã°ç™¾æˆ¦å±ã†ã‹ã‚‰ãšã¨ã„ã†ã“ã¨ã§ã€ã¾ãšã¯æ°—ã«ãªã‚‹ãã®æ£ä½“ã‚’æŽ¢ã£ã¦ã„ãã¾ã—ã‚‡ã†ï¼
Layzie 2009/04/27
security

xss
ãƒªãƒ³ã‚¯
XSSã¯ãã®ã‚µã‚¤ãƒˆã‚’ä¿¡é ¼ã—ã¦ã„ã‚‹äººãŒå¤šã„ã»ã©è„…å¨ã«ãªã‚Šã†ã‚‹ - ã¼ãã¯ã¾ã¡ã¡ã‚ƒã‚“ï¼(Hatena)
ã¯ã„ï¼ ã“ã‚“ã«ã¡ã¯ï¼ ä»Šæ—¥ã¯çã—ãã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã«ã¤ã„ã¦ä¸€è¨€ã§ã™ï¼ ã‚¿ã‚¤ãƒˆãƒ«ã«ã‚ã‚‹é€šã‚Šã€ XSSã¯ãã®ã‚µã‚¤ãƒˆã‚’ä¿¡é ¼ã—ã¦ã„ã‚‹äººãŒå¤šã„ã»ã©è„…å¨ã«ãªã‚Šã†ã‚‹ ã£ã¦ã“ã¨ãªã‚“ã ã‘ã©â€¦ã€‚ã“ã‚Œã ã‘ã ã¨ã€ã‚ãŸã‚Šã¾ãˆã£ã½ã„ã‚ˆãã€‚ ã¾ãšXSSè„†å¼±æ€§ã£ã¦ãªã«ï¼Ÿ ã£ã¦äººã®ãŸã‚ã«ç°¡å˜ã«èª¬æ˜Žã—ã¡ã‚ƒã†ã¨ã€ã“ã‚Œ ã‚µã‚¤ãƒˆã‚’ä½œã£ãŸäººä»¥å¤–ã®äººã§ã‚‚ã€å¥½ããªã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚’å®Ÿè¡Œã§ãã¡ã‚ƒã†çŠ¶æ…‹ ã£ã¦ã“ã¨ãªã‚“ã ã‚ˆãã€‚ ã§ã‚‚ã‚ˆãè€ƒãˆã¦ã¿ã¦ã»ã—ã„ã€‚ ã‚¹ã‚¯ãƒªãƒ—ãƒˆãŒå®Ÿè¡Œã§ãã‚‹ã€‚ã¸ã‚“ãªã‚¹ã‚¯ãƒªãƒ—ãƒˆãŒå®Ÿè¡Œã•ã‚Œã¡ã‚ƒã†ã‹ã‚‚ã—ã‚Œãªã„ãƒšãƒ¼ã‚¸ã€‚ ã“ã‚Œã£ã¦åˆ¥ã«ã€ã€Œãµã¤ã†ã«ã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚’è¨±å¯ã•ã‚Œã¦ã„ã‚‹ã€ãã“ã‚‰ã¸ã‚“ã®ãƒ–ãƒã‚°ã‚„ãƒ›ãƒ¼ãƒ ãƒšãƒ¼ã‚¸ã¨åŒã˜ã€ã˜ã‚ƒãªã„ï¼Ÿ ã„ã‚„ã€å¾®å¦™ã«é•ã†ã‹ãªã€‚ é•ã†ç‚¹ã¯ã²ã¨ã¤ã€‚ ã‚¹ã‚¯ãƒªãƒ—ãƒˆã‚’åŸ‹ã‚è¾¼ã‚ã‚‹ã®ãŒã€Œã‚µã‚¤ãƒˆã®ç®¡ç†è€…ã‚ªãƒ³ãƒªãƒ¼ã€ãªã®ã‹ã€Œèª°ã§ã‚‚ã€ãªã®ã‹ã®é•ã„ãŒã‚ã‚‹ã‚“ã ã‚ˆãã€‚ â€¦ ã˜ã‚ƒã‚ã€ã€Œåã‚‚ãªãã‚µã‚¤ãƒˆã®ç®¡ç†è€…ã€ã¨ã€Œèª°ã§ã‚‚ã€ã®é•ã„ã£ã¦ãªã‚“ã ã‚ã†ï¼Ÿ ãªã‚“ã ã‚
Layzie 2008/10/02
ã™ã’ãˆã€ã€Œãªã‚‹ã»ã©ã€ã¨è¨€ã„ã¤ã¤ä½•ã‚‚ã‚ã‹ã£ã¦ãªã„æ„ŸãŒã™ã’ãˆã€‚

xss

security

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
1