Resources
People often ask me "How did you learn how to hack?" The answer: by reading. This page is a collection of the blog posts and other articles that I have accumulated over the years of my journey. Enjoy!
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
Supakiad S. (m3ez)Posted 1 Year Ago- Bing is the Microsoft search engine. BingBot is the web crawler used to keep Bing up to date with search results.
- When a user searches for a video on Bing, the search engine retrieves the content from its index with all of the videos details. Even though the data is stored as JSON, the returned content type is
text/htmlfor some reason. - Since the metadata associated with a video is completely controlled, the browser may confuse this as a loadable HTML page! The author created a video on several different platforms with script tags. Once the indexer had picked this up, if we go to the exact page for this, it leads to stored XSS on Bing. A user must click the link in order to be exploited though.
- Another Content Type mishap! I feel like I've been seeing more and more write ups about this. Good find!
