Full Disclosure mailing list archives

Re: RE: Miatrade Guestbook - Persistant XSS

From: Michael Renzmann <security () dylanic de>
Date: Mon, 25 Aug 2003 06:23:39 +0200

Hi.

dev-null () no-id com wrote:

And the XXS Lamer king strikes again *sigh*

[...]

This message has been sent via an anonymous mail relay atwww.no-id.com.


Surprise, surprise, an anonymous coward again, bashing others. Well, we
didn't have that here for... 3 days? 4? Wow. New record.

I'm not sure if I can take all that 1337 XXS stuff, donnie wiener can
you please please please pretty please write a whitepaper about those
1337 skillz you surely must have? I'm particulary interested in
exactly how you find those highly secret bugs in applications and how
you go and exploit them.

How about using google to find some of those papers already writtenabout XSS? This wouldn't be too 1337, right?


Bye, Mike

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Miatrade Guestbook - Persistant XSS morning_wood (Aug 24)
- <Possible follow-ups>
- RE: Miatrade Guestbook - Persistant XSS dev-null (Aug 24)
  - Re: RE: Miatrade Guestbook - Persistant XSS Michael Renzmann (Aug 24)
- RE: Miatrade Guestbook - Persistant XSS dev-null (Aug 25)
  - Re: RE: Miatrade Guestbook - Persistant XSS Michael Renzmann (Aug 25)
  - Re: RE: Miatrade Guestbook - Persistant XSS Knud Erik Højgaard (Aug 26)