Google Gears Installation website is vulnerable to content insertion via url parameter:
http://gears.google.com/?action=install&message=<insert your funny message here
here's one example, http://gears.google.com/?action=install&message=Google%20was%20actually%20created%20by%20aliens%20who%20came%20to%20our%20solar%20system%20thousands%20of%20decades%20ago.%20Aqua%20Teen%20Hunger%20Force%20Colon%20Movie%20Film%20for%20Theaters%20totally%20rawks%20you!
Here's another fun one that breaks the scientology copyrights (it's text from the new era dianetics for operating thetans):
http://gears.google.com/?action=install&message=As%20has%20been%20announced,%20there%20is%20a%20special%20handling%20for%20OTs%20who%20have%20been%20run%20on%20Dianetics%20since%20Clear.%20It%20is%20called%20%22NED%20for%20OTs%22. |
Cool! can we insert javascript DOM element |
Try this
http://gears.google.com/?action=install&message=\
var regex = new RegExp('[\?&]' + name + '=([^&#]*)'); var results = regex.exec(window.location.href); return results && decodeURIComponent(results[1]); |
Suresh, HTML seems to be filtered, no?
<font size="-1"> <p><span id="app_message"></span></p>
i tried to insert javascript , HTML tag it doesnt render as html tag.
function putParamText(nodeId, paramName) { var text = getQueryParam(paramName); if (text) { if (text.length > 150) { text = text.substring(0, 150) } var node = document.getElementById(nodeId); if (node) { node.innerText = node.textContent = text; } } } putParamText('app_message','message');
innerText ? instead of innerHTML |
I wonder if the number of indexed urls (5) will go up soon?
http://www.google.com/search?q=site:gears.google.com&filter=0 |
http://code.google.com/apis/gears/design.html
"Use the URL in the code above to access the Google Gears installation page. Substitute your customized message and your URL in the parameters."
"message: Provide any text up to 150 characters. This message appears at the top of the installation page. For example: "Install Google Gears to enable MyGreatApp's offline features!"" |
yes i have seen that already. the question was why HTML was not rendered. |
<< Provide any TEXT up to 150 characters. This message appears at the top of the installation page. >> |
I hope googlebot will index it. It would be fun. |
> the question was why HTML was not rendered.
Rendering HTML could compromise the page (HTML injection – Google has a whitelist of tags with which thea clean HTML, but this might still allow you to leave e.g. <b> tag open, rendering the whole page in bold). And rendering JS would even compromise the Google cookie.
> I hope googlebot will index it.
Hmm... I can't see any meta-directive excluding robots in the page itself, and as there's no robots.txt file at this time (http://gears.google.com/robots.txt)... I guess it can be indexed, as it's linked from other places (like this forum). This search doesn't yet return results though: http://www.google.com/search?hl=en&q=%22Google+was+actually+created+by+aliens+who+came+to+our+solar+system%22&btnG=Google+Search |