Hack x Crack - Comunidad de Seguridad informática
Seguridad Informatica => Hacking => Hacking web => Mensaje iniciado por: rcasd3000 en Diciembre 02, 2018, 11:40:32 am
-
There is a flaw in the Mixcloud Player on Carl Cox website that allow a user to change the Mixcloud url to his/her own. The Player is hosted on www.carlcox.com and can play any Mixcloud file. Also there is probable xss vuln but i didn't test it.
In the example i use Carl Cox Mixcloud Player to play a Angerfist set.
Download
https://openload.co/f/6KWK019hY4U/Mixcloud_Sponsored_by_Carl_Cox_Link_Generator.zip
Virustotal
https://www.virustotal.com/#/file/f616da47b23d805c4a42aad5a5be40e6eb7780f873dea753fbc719859eb1e7c3/detection