Cenzic 232 Patent
Paid Advertising
web application security lab

Another XSS Exploit in Google’s Orkut

Rajesh Sethumadhavan posted another vulnerability in Google’s Orkut. This one is a tad more obscure because it requires user input (clicking a link) to execute the exploit. Here’s the disclosure:

1)Orkut Invite XSS:

The flaws are due to improper sanitization of inputs passed to ’show’ parameter in GET request
——————————————————————-
http://www.orkut.com/Friends.aspx?show=group1);alert(document.cookie
——————————————————————

Demonstration:
Note: Demonstration leads to your personal information disclosure

- Login to your orkut account
- Paste the above URL
- Click on ‘delete group’ & ‘ok’ button
- Orkut Cookies will get displayed

I’ve never been a big fan of social networking sites for the (lack of) security aspect. With the recent rash of XSS worms out there, these sites should probably start considering these issues as serious. Since Google doesn’t appear to have the required resources in-house they should really consider hiring outsourced help to fix them. At least they are getting some input from their users, even if they aren’t able to find their own security flaws. Until then it’s probably still a good idea to steer clear of these websites from a consumer perspective.

4 Responses to “Another XSS Exploit in Google’s Orkut”

  1. RSnake Says:

    Somehow a few posts got deleted this morning:

    Hanumant:

    www.orkut.com is blocked by our administrator then how can i use it. if any other similer page is available for ORKUT LOGIN then please tell me.

  2. Inside Orkut Says:

    Another Hole Within Orkut……

    It looks like another hole inside Orkut has been discovered. Credit goes to Rajesh Sethumadhavan for discovering this….

  3. zorawar Says:

    www.orkut.com is blocked by our administrator then how can i use it. if any other similer page is available for ORKUT LOGIN then please tell me.

  4. ankit Says:

    blocked the orkut.com i want the another url of orkut.com