Full Disclosure mailing list archives
XSS in cookie
From: "offtopic" <offtopic () mail ru>
Date: Wed, 28 Apr 2004 16:43:53 +0400
Hi List. I found XSS in cookie on an Web-application. So, if i use special-crafted cookie, I can run XSS attak against the site users. To accomplish attack I must modify cookie on client computer, which I can do by XSS :-) Is it vulnerability and if it is, how to use this attack? Thank you, and sorry for my English, (c)oded by offtopic () mail ru _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- XSS in cookie offtopic (Apr 28)