Full Disclosure mailing list archives
Re: To XSS or not?
From: "Valery Marchuk" <tecklord () argocom cv ua>
Date: Sun, 23 Jul 2006 22:54:24 +0300
Separating just XSS vulns from others is not an option. It would make more sense to create a separate mailing list for vulnerabilities in Web applications.
If kiddies discover them, then how should they know that the vulnerability they`ve found is not a major one? They`ve desided to publish a vuln to the list, because it seems to be important to them :)Major ones could still be reported on the other lists.
----- Original Message ----- From: "Aaron Gray" <angray () beeb net>
To: <full-disclosure () lists grok org uk> Cc: <bugtraq () securityfocus com> Sent: Sunday, July 23, 2006 9:04 PM Subject: Re: [Full-disclosure] To XSS or not?
Major ones could still be reported on the other lists. Aaronsomething like xsstraq powered on securityfocus should be cleaner yep :)Maybe there should be a special XSS list that could specialize in that area ?_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.htmlHosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- To XSS or not? Gadi Evron (Jul 23)
- Re: To XSS or not? Aaron Gray (Jul 23)
- Re: To XSS or not? ad () heapoverflow com (Jul 23)
- Re: To XSS or not? Aaron Gray (Jul 23)
- Re: To XSS or not? Valery Marchuk (Jul 23)
- Re: To XSS or not? Javor Ninov (Jul 24)
- Re: To XSS or not? Aaron Gray (Jul 24)
- Re: To XSS or not? Michael Simpson (Jul 25)
- Re: To XSS or not? ad () heapoverflow com (Jul 23)
- Re: To XSS or not? Aaron Gray (Jul 23)