[Full-disclosure] Double Trap XSS Injection : An Analysis
Aditya K Sood
zeroknock at metaeye.org
Fri Mar 16 17:53:47 GMT 2007
Hi all
This analysis will enable you to the different realm of XSS injection
attacks.
No XSS cheatsheat is used in this. I am presenting the full analysis of
it.
The demonstration target is SecTheory security consultation website.
This process goes in both ways. This will throw light on the trodden basics
of security companies and also helpful in determining new class of
exploitation.
http://zeroknock.blogspot.com/2007/03/double-trap-xss-injection-analysis.html
The issue have been undertaken by ha.ckers.org and replied as:
http://zeroknock.blogspot.com/2007/03/hackersorg-view-over-double-trap-xss.html
Regards
Zknk
Full-Disclosure is hosted and sponsored by Secunia.