[Full-disclosure] www.passwordsafe.com

[Thomas Pollet]

Hello,

I was reading this blog entry :
http://www.schneier.com/blog/archives/2008/05/the_doghouse_pa.html

I couldn't help but xss them a little.

Poc at :
http://signedness.org/~xz/pwtest.html

You need to be logged in for this to work.
All this can be improved but I'm gonna waste my time somewhere else now.

Regards,
Thomas Pollet

http://thomas.pollet.googlepages.com/