Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

cross site scripting... is your site on this list

From: Ryan Yagatich <ryagatich () CSN1 COM>
Date: Wed, 13 Dec 2000 23:57:00 -0500
This is a known problem with places... here is a list of servers i found
that have this bug still... is your site on this list??

http://www.freeasp.com
http://hotbot.lycos.com
http://www.go.com
http://www.canada.com
http://www.fireball.de
http://www.funkycat.com
http://www.worldlight.com
http://www.searchit.com
http://www.theatre-link.com (sort-of)
http://www.1800ussearch.com
http://www.monstercrawler.com
http://search.wolfram.com
http://www.lycos.com
http://www.faqs.org
http://search.icq.com
http://www.looksmart.com
http://www.godado.co.uk (shows full path to script... hrm...)
http://www.lyricsearch.com
http://www.computerservicenow.com

until i find what the *real* threat is behind this, i have not notified any
of these people... should i?


ryan

-----
  those who have no life are those who spend their time complaining about
the ones being criticised
-----
Previous By Date Next
Previous By Thread Next

Current thread: