Nedstat | WorldStats | Form
| Around mid-january I added the referStat from Nedstat, a service which also get the
refferring page (URL) from your visitors. I saw it was done with some simple Javascript using the document.referrer
property and the escape(string s) build-in function of a browser. But then I thought: Information is written to the server, what if I filled in some information instead of the browser. Guess what? It worked! That escape(string s) gives a string back which is converted to a 'standard' URL-encoded format, so I made a converter (look below). I first tried to insert silly stuff like some vague linx like http://www.satan.com . Then more serious stuff like this: http:"><meta http-equiv=refresh content=5;fly.to/55> After 5 seconds the page switches to the Quake Clan BQD where I'm member of. Cool huh? End february Nedstat had a countermeasure and now filters all tags out of the referstrings, but still you can insert 25 lines of 52-7=45 characters of plain text. I found out that the string (say http://bqd.bikkel.com) you give to the Nedstat server is processed and put into the statistic page like this: ... somewhere ... <a href="http://bqd.bikkel.com">bqd.bikkel.com</a> ... something else ... That's 2 times, and from the last is the http:// stripped... Now try it yourself below Notes - There has to be a http: in front of the string because the won't except it. (It replaces it for a stupid message) - Maximum length of the string to insert is 47 characters. (My string input field is 47+5=52 characters long) - You have 25 lines to fill, that means 25 times to put a string of 47 characters in the page - If you want to insert HTML tags of your own, be sure to close the href tag with: http:"> - Be sure to not have visited your victim site before because Nedstat then doesn't want to accept your referrer URL - Use at least 2 computers with different ip addresses if you want to see some result |
| All Nedstat hostnames | ||
| The Netherlands | www.nedstat.nl | |
| USA | usa.nedstat.net | |
| Belgium | be.nedstat.net | |
| United Kingdom | uk.nedstat.net | |
| Spain | es.nedstat.net |
| This counter service is still in its starting fase and this gives room for lots of exploits. I found out that the string (say http://bqd.bikkel.com) you give to the Worldstats server is processed and put into the statistic page like this: ... somewhere ... <a href="http://bqd.bikkel.com">http://bqd.bikkel.com</a> ... something else ... That's 2 times. Now try it yourself below Notes - It accepts ALL text. - There is no unreasonable limit on the length of the referstring! - Maximum of referlines is 10. - If you want to insert HTML tags of your own, be sure to first close the href tag with: "> - You can insert any time any where any string into the statistical pages! |
| All Worldstats hostnames | ||
| The Netherlands | www2.worldstats.com | |
| International | beta.worldstats.com |
| 1. Type here the victim's counter name: 2. Type here the counters hostname: 3. Type here the text or HTML to insert in the victim's page: 4. Push one of these buttons For Nedstat: For WorldStats: If you push the 'Convert String' buttons then here is your output: For 'resetting' the pages you can use this button, it puts the numbers 1-25 in the page you specified above... warning this opens 25 windows! Have to add this.... |
Cracking/Hacking
Mail me at anarchriz(at)hotmail(dot)com.