search

samdenty / Wi-PWN

ESP8266 firmware for performing deauthentication attacks, with ease.
Other
1.56k stars 318 forks source link

JS/HTML injection via SSID #90

Open jn4kr opened 5 years ago

jn4kr commented 5 years ago

As you can see it's possible to inject HTML/Javascript in the attack page via the ssid.

Steps to reproduce

  1. Create a beacon with the tag you wan't to inject as SSID (e.g. <svg onload=\"alert('1')\"/> )
  2. Select the beacon as target
  3. Switch to the attack page

Screenshots

scan

attack

minanagehsalalma commented 5 years ago

@jn4kr ... Does android even process these WiFi names in the available wifis list ?!

jn4kr commented 5 years ago

Yeah. But i think it's off topic, so I'll sent you a mail about this topic.

bddvlpr commented 5 years ago

Project is kinda dead but once i really don’t know what to do, i’ll think about it.

kingdevnl commented 5 years ago

We might be able to strip out all HTML code using a REGEX?

ghost commented 5 years ago

Check thsi out: https://code-examples.net/en/q/129e949