Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development: Re: Sourceforge.net XSS

Re: Sourceforge.net XSS

From: <v9_at_fakehalo.us>
Date: 12 Apr 2006 20:29:32 -0000

('binary' encoding is not supported, stored as-is) Is it me, or do these XSS vulnerabilies not really count? I don't see a way this can be abused other than to yourself. In my book a XSS vulnerability must be stored on the server and displayed for others to view, otherwise whats the point? If i'm not getting the big picture, someone inform me...I don't mean to flame on you specifically, but I have seen alot of these "XSS in the URL" dealios lately.
Received on Apr 12 2006

This message: [ Message body ]
Next message: Daniel: "Re: Sourceforge.net XSS"
Previous message: Alice Bryson: "vulnerability research approach"
Maybe in reply to: the.spikey_at_gmail.com: "Sourceforge.net XSS"
Next in thread: Daniel: "Re: Sourceforge.net XSS"
Reply: Daniel: "Re: Sourceforge.net XSS"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]