|
Full Disclosure
mailing list archives
Re: Hakin9 Reflected XSS - Irony?
From: Swair Mehta <swairmehta () gmail com>
Date: Wed, 14 Nov 2012 19:13:28 -0800
Surprises me how people who are selling security stuff can be ignorant.
Excellent find. And it is still not fixed.
May be they figured no one would click a link that said something like
www.hakin9.org/??? .
Swair mehta
On 14-Nov-2012, at 9:28 AM, "pieter () ironsecurity nl"
<pieter () ironsecurity nl> wrote:
So, we all remember DICKS Right?
http://hakin9.org/?s= < Try sticking <body onload=alert(1)> into there :-)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
 By Date 
By Thread
Current thread:
| 
