Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Hakin9 Reflected XSS - Irony?
From: Swair Mehta <swairmehta () gmail com>
Date: Wed, 14 Nov 2012 19:13:28 -0800

Surprises me how people who are selling security stuff can be ignorant.

Excellent find. And it is still not fixed.
May be they figured no one would click a link that said something like
www.hakin9.org/??? .

Swair mehta

On 14-Nov-2012, at 9:28 AM, "pieter () ironsecurity nl"
<pieter () ironsecurity nl> wrote:

So, we all remember DICKS Right?

http://hakin9.org/?s= < Try sticking <body onload=alert(1)> into there :-)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault