Frame Injection Vulnerabilities ‎(Information Security Laboratory)‎

Frame Injection Vulnerabilities

Frame injection vulnerabilities, although some people might consider them the same as HTML injection/XSS or even a subset, they really are not the same. Here is why:

there is no need to inject special control characters such as angle brackets (unlike HTMLi/XSS)
HTMLi/XSS filtering routines will not project against frame injection since the attacker only needs to insert a URL in the non-sanitized parameter

Proof of concept (tested on 10th Oct 2008):

http://mail.google.com/imgres?imgurl=http://SecureGoogleMail&imgrefurl=%68%74%74%70%3a%2f%2f%73%6e%69%70%75%72%6c%2e%63%6f%6d/482f3

Information Security Laboratory

Site

Portfolio

Work

Media

Frame Injection Vulnerabilities