Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: INTERNIC WHOIS untrusted link XSS

From: "Pistone" <jorge () pistone com ar>
Date: Thu, 2 Oct 2003 19:12:51 -0300
Aha,

Jul 23 2002 5:19AM
http://www.securityfocus.com/archive/82/283724/2002-07-17/2002-07-23/0
20 May 2003 00:29:17
http://lists.netsys.com/pipermail/full-disclosure/2003-May/005092.html



untrusted link XSS




untrusted link XSS ...


http://www-whois.internic.net/cgi/whois?whois_nic=%3Ca+href%3Dhttp%3A%2F%2Fe

vilsite.com%3Eclick%20here%20for%20results%3C%2Fa%3E&type=domain

or any xss you wish to embed is also OK
morning_wood ( XSS king )   <--  (XSS CopyKing)




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: