Vulnerability Development mailing list archives

Re: Sourceforge.net XSS

From: v9 () fakehalo us
Date: 12 Apr 2006 20:29:32 -0000

Is it me, or do these XSS vulnerabilies not really count? I don't see a way this can be abused other than to yourself.  
In my book a XSS vulnerability must be stored on the server and displayed for others to view, otherwise whats the 
point? If i'm not getting the big picture, someone inform me...I don't mean to flame on you specifically, but I have 
seen alot of these "XSS in the URL" dealios lately.

Current thread:

Sourceforge.net XSS the . spikey (Apr 09)
- <Possible follow-ups>
- Re: Sourceforge.net XSS v9 (Apr 12)
  - Re: Sourceforge.net XSS Daniel (Apr 12)
- Re: Re: Sourceforge.net XSS v9 (Apr 13)
  - Re: Sourceforge.net XSS ascii (Apr 13)
- Re: Sourceforge.net XSS Juan C Calderon (Apr 17)
  - Re: Sourceforge.net XSS v9 (Apr 17)
    - Re: Sourceforge.net XSS morgan allen (Apr 18)
    - Re: Sourceforge.net XSS Valdis . Kletnieks (Apr 18)
    - Re: Sourceforge.net XSS Juan C Calderon (Apr 18)