Sep. 16, 2009

Posted by in FAXX Hacks | No comments

FAXX Hack: NetworkedBlogs

Reported By: Tom Eston

Current Monthly Active Users: 674,027

Current Rank on Application Leaderboard: 164

Application Developer: Ninua, Inc.

Responsiveness: Ninua responded quickly and issued a patch within 24 hours. Furthermore, they went back and scanned all of their pages for holes, then did a second sweep the next week.

Vulnerability Status: Patched

Technical Details:

  1. One could insert FBML into the Link Name field for links in a user’s profile. This code would then be rendered when someone viewed the profile.
  2. At least one page appeared to have a SQL injection hole.  As an example, searching for \’test producing a lengthy SQL error.
  3. One page,  http://apps.facebook.com/blognetworks/userpage.php, was vulnerable to both SQL injection and XSS by inserting text into the uid parameter, such as \<img src=”">.

Notes: This is the first example of a persistent XSS hole in a Facebook application that I became aware of, and full credit for the find goes to security researcher Tom Eston, one of the main people behind SocialMediaSecurity.com.

No Comments

Trackbacks/Pingbacks

  1. Tweets that mention FAXX Hack: NetworkedBlogs | Social Hacking -- Topsy.com - [...] This post was mentioned on Twitter by theharmonyguy. theharmonyguy said: New #FAXX Hack: NetworkedBlogs http://bit.ly/qlcyo (Persistent XSS and SQLi ...

Leave a Reply