Bugtraq mailing list archives
Cross site scripting @verisign.com and @cybercash.com
From: KF <dotslash () snosoft com>
Date: Fri, 19 Apr 2002 12:38:16 -0400
http://www.cybercash.com/<script>alert('hi')</script>or
http://www.verisign.com/ <http://www.cybercash.com/><script>alert('hi')</script>Not sure how big a deal this is... but seeing as how the name verisign is associated with "Security" I think it should be looked at. This didn't work from my Mozilla browser on linux but it did from IE on win2k... could be a browser detection method causing the varied results.
-KF
Current thread:
- Re: Cross site scripting @verisign.com and @cybercash.com zeno (Apr 20)
- <Possible follow-ups>
- Cross site scripting @verisign.com and @cybercash.com KF (Apr 20)