[Full-disclosure] [FDSA] Notepad Highly Critical Cross-Site Scripting (XSS) Vulnerability
str0ke
str0ke at milw0rm.com
Thu Jan 17 18:40:43 GMT 2008
Fredrick Diggle wrote:
> #######################################################################
>
> =======
> 3) Proof of Concept
> =======
>
> 1. Open Notepad
> 2. Enter the following text
> <script>alert("xss");</script>
> 3. Save file as "exploit.html"
> 4. double click the payload file
>
> #######################################################################
>
lmfao.
Full-Disclosure is hosted and sponsored by Secunia.