PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Facebook Worm? Stickbandits/Artnumber

From: Adrian Crenshaw <irongeek () irongeek com>
Date: Mon, 6 Sep 2010 15:42:58 -0400
Anyone else seen/get hit by this? Seems to be SSRF (Same Site Request
Forgery, since it's the same site). Seems to work something like the old
Sammy worm. I've included source (I think) in a test file. Not sure if it
will go through. I'm about to look at the code closer.

Adrian

Attachment: facebookworm.txt
Description: 

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: