mailing list archives
Ultimate Auction <=3.67
From: Querkopf <druck_von_rechts () gmx de>
Date: Sun, 15 Jan 2006 16:41:19 +0000
I've found a XSS in Ultimate Auction <=3.67. The Vendor was informed mid
October 2005! They still haven't fix the script and doesn't reply to mails.
Here's a little Example:
The bug has the BID 16239
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- Ultimate Auction <=3.67 Querkopf (Jan 15)