tag:blogger.com,1999:blog-3650259870998252242.post1793963100758452063..comments2023-10-20T18:17:56.706+02:00Comments on the world. according to koto: How to upload arbitrary file contents cross-domainAnonymoushttp://www.blogger.com/profile/11516786094492717236noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-3650259870998252242.post-23460326529180005232011-05-01T21:31:37.499+02:002011-05-01T21:31:37.499+02:00Interesting! If possible, keep me updated on what ...Interesting! If possible, keep me updated on what you've found out and did it succeed.kkotowiczhttp://blog.kotowicz.netnoreply@blogger.comtag:blogger.com,1999:blog-3650259870998252242.post-19150117996143839542011-04-30T21:32:59.763+02:002011-04-30T21:32:59.763+02:00Really interesting approach for cross domain uploa...Really interesting approach for cross domain upload. As you mentioned, same domain "silent" arbitrary upload was always possible by spoofing the entire post chunk with XHR. I came across a Facebook flaw which was basically a file upload vulnerability in which arbitrary filenames induced XSS (no random token here, CSRF too!). That time I could not think of a way to do cross domain uploads, so had abandoned it then. After reading this new approach, I'll try to implement it to make that poc complete! Interesting find!Atul Agarwalhttp://www.secfence.comnoreply@blogger.com