Skip to main content

Vulnerability Is Almost Everywhere!

As you all know(even if you dont know let me tell you) I am not any elite hacker. I am learning like all of you.May be it is because I haven't found vulnerability in any sites other than these challenge sites (myself),my confidence is very low.
But something occurred today that lifted my confidence a little higher.

what was it??

Well..first of all let me ask you, have you seen the game menu in this blog? which has hangman game for you to play? Well I was playing in it today and got wrong guess always..then i thought ,why on earth i can't win even this small game!!
 Then an Idea struck me!! what if like all this challenge site, there is vulnerability in this game which is a simple code i have copied from another website without even reading it!
I right clicked on the "Guess" button and  selected inspect!
 There i saw 

<input name="ratebutton" type="button" value="Guess" onclick="pruefeZeichen()">

now I know my input is given to the function pruefeZeichen()

I right clicked the site and selected "view-source"

there ctrl+f  to find and searched for pruefeZeichen()

i saw a script after the fuction is called ,

var lsgwoerter = [["T", "R", "E", "E", "H", "O", "U", "S", "E"],  ["J","A","V","A","S","C","R","I","P","T"],  ["W","E","B","D","E","S","I","G","N"],  ["E","D","U","C","A","T","I","O","N"],  ["C","H","O","C","O","L","A","T","E"],  ["G","E","R","M","A","N","Y"]]
var random = Math.floor((Math.random()*(lsgwoerter.length-1))); var lsgwort = lsgwoerter[random]; // the word to guess will be chosen from the array above

There it is...

there is only six words and if you count no. of dashes in the question, we can easily guess which word they want..

another method is,

when we search for fucntion we can see

var pruefeZeichen = function(){ var f = document.rateformular;  var b = f.elements["ratezeichen"];  var zeichen = b.value; // the letter provided by the user zeichen = zeichen.toUpperCase(); for (var i = 0; i < lsgwort.length; i++){  if(lsgwort[i] === zeichen){   ratewort[i] = zeichen + " ";   var treffer = true;  } b.value = "";

From that its clear our input is checked with value in variable lsgwort

we know our word is stored in "lsgwort"
in our page  right click and select inspect, in that select console

below that type alert(lsgwort)

Hit enter and you will get the word as alert!

What lifted my confidence?

Now I understand here I didn't made  this vulnerability intentionally ,I was not even aware of it...similarly any new or old sites can have many vulnerabilities which the creators have missed to fix.

This is why there is a great chance for Ethical Hackers to help these guys to fix them and get paid by them.


Popular posts from this blog

Hack Invite Code To Register - Hack The Box

Recently I found another website that have more advanced hacking challenges...I know I need to cover other websites which i have promised you but something in this website is interesting.For registering in this website,you need to hack and get an invite code.So, I thought to deviate from our regular topic and talk about it.


They are asking invite code for registering.As usual i checked source-code of the page.Since I found nothing suspicious,I started looking at JavaScript and found one that seems can help me.

<script defer src="/js/inviteapi.min.js"></script>I visited the js..There is a script and i found some keywords from that like "log","invite","verifyInviteCode","makeInviteCode"I went back to our registration page now right clicked and selected inspect.


 Try typing in each keyword and check if function exist.

I got output when i checked verifyInviteCode();
But, there was no help fro…

Hack This Site Basic 11

Sam decided to make a music site. Unfortunately he does not understand Apache. This mission is a bit harder than the other basics.As you may have noticed! when we visit this level all we are given with is some line about song.This line changes on each refresh.From this we assume that this is not the real page we need to visit.But how we find our requirement? There is a tool in Kali Linux called 'Dirb'. But for now Iam using an online service for this
>>URL FUZZER<< . First we give the url and search for files with .php extension.
select start scan.Wait for scan to finish.
So,we have found a file.Now visit it as:
There is our login page.still we are stuck!we don't have the password or any hint in the source code of this page. Lets run another scan on the URL Fuzzer ,this time for directories  Same way start scan and wait for it to finish. There are two possible directories. first we try /index/ ..but it seems n…

HackThisSite Realistic Mission 2

Chicago American Nazi Party Racist pigs are organizing an 'anti-immigrant' rally in Chicago. Help anti-racist activists take over their website!  ================================================
From: DestroyFascism 
Message: I have been informed that you have quite admirable hacking skills. Well, this racist hate group is using their website to organize a mass gathering of ignorant racist bastards. We cannot allow such bigoted aggression to happen. If you can gain access to their administrator page and post messages to their main page, we would be eternally grateful.
 ================================================ So a guy named DestroyFascism  is asking for our help.Lets visit the website and check the steps we did in previous missions to find vulnerability. Right click and select view source.There is only 52 lines of code. Check the code for suspicious data.I found something!

CODE ------------------------------------------------------------- <a href="update.php">…