Full Disclosure mailing list archives

Re: Hakin9 Reflected XSS - Irony?

From: Swair Mehta <swairmehta () gmail com>
Date: Wed, 14 Nov 2012 19:13:28 -0800

Surprises me how people who are selling security stuff can be ignorant.

Excellent find. And it is still not fixed.
May be they figured no one would click a link that said something like
www.hakin9.org/??? .

Swair mehta

On 14-Nov-2012, at 9:28 AM, "pieter () ironsecurity nl"
<pieter () ironsecurity nl> wrote:

So, we all remember DICKS Right?

http://hakin9.org/?s= < Try sticking <body onload=alert(1)> into there :-)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Hakin9 Reflected XSS - Irony? pieter (Nov 14)
- Re: Hakin9 Reflected XSS - Irony? Swair Mehta (Nov 15)