[Full-disclosure] [WEB SECURITY] Universal XSS with PDF files: highly dangerous

M.B.Jr. marcio.barbado at gmail.com
Mon Jan 8 13:28:03 GMT 2007

Previous message: [Full-disclosure] [WEB SECURITY] Universal XSS with PDF files: highly dangerous
Next message: [Full-disclosure] [WEB SECURITY] Universal XSS with PDF files: highly dangerous
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 1/3/07, Jim Manico <jim at manico.net> wrote:
> I'm most worried about the CSRF vector.

how come?

this is client-side stuff.

-- 
Marcio Barbado, Jr.
==============
==============

Previous message: [Full-disclosure] [WEB SECURITY] Universal XSS with PDF files: highly dangerous
Next message: [Full-disclosure] [WEB SECURITY] Universal XSS with PDF files: highly dangerous
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Full-Disclosure is hosted and sponsored by Secunia.