Full Disclosure mailing list archives
Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be
From: Dodi Ara <dodi.ara () gmail com>
Date: Tue, 17 Jul 2012 00:43:50 +0700
no pic for POC?? On 7/16/12, coderman <coderman () gmail com> wrote:
On Mon, Jul 16, 2012 at 12:23 AM, Yvan Janssens <Yvan.Janssens () vasco com> wrote:.... I found an XSS vulnerability in http://eenmiljardseconden.frankdeboosere.be/ . This vulnerability was possible due to invalid input validation/bad programming. The owner was contacted and a satiric fix was deployed. ... It is now solved, and if you try to execute it again, you get a link to Rick Astley’s “Never gonna give you up” on YT.priceless! ++ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be Yvan Janssens (Jul 16)
- Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be coderman (Jul 16)
- Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be Dodi Ara (Jul 16)
- Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be coderman (Jul 16)