final

final

By
psychoscan1 0 Seen 321 times
Tags
final
Run this test now.

Results


Tested on
Chrome Mobile - 80 - Android
1.10.2:1.11.4Some Error Occured
1.10.2:1.12.1Some Error Occured
1.10.2:1.11.2Some Error Occured
1.10.1:1.11.4Some Error Occured
1.11.2:1.11.4Some Error Occured
1.11.2:1.12.1Some Error Occured
1.11.2:1.11.2Some Error Occured
1.10.2:1.11.3Some Error Occured
1.11.2:1.11.3Some Error Occured
1.10.1:1.12.1Some Error Occured
1.10.1:1.11.3Some Error Occured
1.10.1:1.11.2Some Error Occured

This browser ran the most recent scan
Tested on
Chrome - 92 - undefined
HEADSome Error Occured
GETSome Error Occured
POSTSome Error Occured
PUTSome Error Occured
OPTIONSSome Error Occured
DELETESome Error Occured
CONNECTSome Error Occured
TRACKSome Error Occured
TRACESome Error Occured
CUSTOMSome Error Occured

User Script (ENUM_FUNCTION)

					
// Custom Functions
var jQuery_version = '';
function vulnerable(){
    addError('jQuery '+ jQuery_version, '<b>Vulnerable</b>');
}

function safe(){
    addSuccess('jQuery '+ jQuery_version, 'Safe');
}
    
function removeIframe(){
    var x = document.getElementById('jQueryFrameID');
    x.parentNode.removeChild(x);
}

// Test Function
function test(data){
	// We need to separate properties and access one by one.
try{
    jQuery_version = data;
    var jQueryFrame = document.createElement('iframe');
    jQueryFrame.id = 'jQueryFrameID';
    jQueryFrame.onload = function(){
            var jQueryScript = jQueryFrame.contentWindow.document.createElement('script');
            jQueryScript.type = 'text/javascript';
            jQueryScript.src = 'https://ajax.googleapis.com/ajax/libs/jquery/'+ data.toString() +'/jquery.js';
            jQueryFrame.contentWindow.document.body.appendChild(jQueryScript);
            jQueryScript.onload = function(){
                var exploitScript = "try{function bad(){parent.vulnerable(); parent.removeIframe();} $('a[name=\"<img src=x onerror=bad()>\"]');} catch(err){parent.safe();parent.removeIframe();}";
                var exploit = jQueryFrame.contentWindow.document.createElement('script');
                exploit.type = 'text/javascript';
                exploit.innerHTML = exploitScript;
                jQueryFrame.contentWindow.document.body.appendChild(exploit);
                
            };
            jQueryScript.onerror = function(){
                addResult(data ,  'Some Error Occured');
            }
    };
    document.body.appendChild(jQueryFrame);

}

catch(err){
	addInfo(data ,  'Some Error Occured');
}

}
		

					
				

Enum Data (ENUM_FUNCTION)

					
var data = ['2.0.3', '2.0.2', '2.0.1', '2.0.0', '1.10.2', '1.10.1', 
'1.10.0', '1.9.1', '1.9.0', '1.8.3', '1.8.2', '1.8.1', '1.8.0', 
'1.7.2', '1.7.1', '1.7.0', '1.6.4', '1.6.3', '1.6.2', '1.6.1', 
'1.6.0', '1.5.2', '1.5.1', '1.5.0', '1.11.0'];