Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

Double Trap XSS Injection : An Analysis
From: Aditya K Sood <zeroknock () metaeye org>
Date: Fri, 16 Mar 2007 23:23:47 +0530
Hi all

This analysis will enable you to the different realm of XSS injection 
attacks.
 No XSS cheatsheat is used in this. I am presenting the full analysis of 
it.
The demonstration target is SecTheory security consultation website.
This process goes in both ways. This will throw light on the trodden basics
of security companies and also helpful in determining new class of 
exploitation.

http://zeroknock.blogspot.com/2007/03/double-trap-xss-injection-analysis.html

The issue have been undertaken by ha.ckers.org and replied as:

http://zeroknock.blogspot.com/2007/03/hackersorg-view-over-double-trap-xss.html

Regards
Zknk

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • Double Trap XSS Injection : An Analysis Aditya K Sood (Mar 16)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]