Home/ Questions/Q 6063437
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-23T09:09:56+00:00

There is a page: http://renren.com/echo (not real) that will return JSON style data like:

  • 0

There is a page: http://renren.com/echo (not real) that will return JSON style data like: 

{"candidate":[{"id":251574647,"name":"Jack"}]}

Now I’m at http://my-server.com and I’d like to do a cross domain Ajax request.
Due to the page at http://renren.com have to be log-in ed to view, I can’t use server proxy.
The returned JSON data doesn’t have a function call or assignment, so I can’t use JSONP.
I doesn’t have the right to modify the page at renren.com. What can I do in this condition?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    The technique described by Brian Chess et. al. in the following paper might be of use in this case. In short you override the javascript setter that is used to process the incoming JSON.

    https://www.fortify.com/downloads2/public/JavaScript_Hijacking.pdf

    When the JSON array arrives on the
    client, it will be evaluated in the
    context of the malicious page. In
    order to witness the evaluation of the
    JSON, the malicious page has redefined
    the JavaScript function used to create
    new objects. In this way, the
    malicious code has inserted a hook
    that allows it to get access to the
    creation of each object and transmit
    the object’s contents back to the
    malicious site.

    • 0