Full Disclosure: Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be

Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be

From: Dodi Ara <dodi.ara () gmail com>
Date: Tue, 17 Jul 2012 00:43:50 +0700

no pic for POC??

On 7/16/12, coderman <coderman () gmail com> wrote:

On Mon, Jul 16, 2012 at 12:23 AM, Yvan Janssens <Yvan.Janssens () vasco com>
wrote:

....
I found an XSS vulnerability in
http://eenmiljardseconden.frankdeboosere.be/
. This vulnerability was possible due to invalid input validation/bad
programming. The owner  was contacted and a satiric fix was deployed.
...
It is now solved, and if you try to execute it again, you get a link to
Rick
Astley’s  “Never gonna give you up” on YT.


priceless! ++

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be Yvan Janssens (Jul 16)
- Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be coderman (Jul 16)
  - Re: XSS vulnerabilty on eenmiljardseconden.frankdeboosere.be Dodi Ara (Jul 16)