Yes all XSS is very serious and not for making jokes, if pdp said that hacker can steal data the CSS on google could be very damgerous vulnerability<br><br><a href="http://www.xssworm.com:80/?index?blackhat=seo#extreme">Blackhat SEO XSS
</a> hacker example:<br><br><a href="http://mail.google.com/mail.%5CINBOX.%3C%252E18%252E/%2E%2E/local_url?%2E%5Cl.%5CINBOX.%3C%252E18%252E/%2E%2ExSSr0X.%2e%21%21@%21%21%21@@%21%21%21@%21@%21&q=/mail.%5CINBOX.%3C%252E18%252E/%2E%2E/local_url?%2E%5Cl.%5CINBOX.%3C%252E18%252E/%2E%2ExSSr0X.%2e%21%21@%21%21%21@@%21%21%21@%21@%21&q=http://xssworm.com/&seo=blackhat">
http://mail.google.com/mail.%5CINBOX.%3C%252E18%252E/%2E%2E/local_url?%2E\l.%5CINBOX.%3C%252E18%252E/%2E%2ExSSr0X.%2e!!@!!!@@!!!@!@!&q=/mail.%5CINBOX.%3C%252E18%252E/%2E%2E/local_url?%2E\l.%5CINBOX.%3C%252E18%252E/%2E%2ExSSr0X.%2e!!@!!!@@!!!@!@!&q=http://xssworm.com/&seo=blackhat
</a><br><br clear="all">Please if you search XSS hacking also visit <a href="http://XSSWORM.COM">XSSWORM.COM</a> <br>here: <a href="http://xssworm.com">http://xssworm.com</a> we have updates with blackhat and whitehat video with XSS hacking tutorial by blackhat[2] Sunjester frome
<a href="http://litehackers.info">litehackers.info</a><br><br>vaj<br><br>-- <br>Francesco Vaj [CISSP - GIAC]<br>CSS Security Researcher - <a href="http://xssworm.com">xssworm.com</a><br>mailto:<a href="mailto:vaj@nospam.xssworm.com">
vaj@nospam.xssworm.com</a><br>aim: XSS Cross Site <br>------<br><br>[2] <a href="http://xssworm.blogvis.com/9/xssworm/what-is-a-blackhat-hacker-and-where-are-black-hats-hacking/">http://xssworm.blogvis.com/9/xssworm/what-is-a-blackhat-hacker-and-where-are-black-hats-hacking/
</a><br>
<br><br><div class="gmail_quote">On Nov 9, 2007 8:36 AM, pdp (architect) <<a href="mailto:pdp.gnucitizen@googlemail.com">pdp.gnucitizen@googlemail.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
well this XSS can lead to so much data being stolen that it is not even funny!<div><div></div><div class="Wj3C7c"><br><br><div class="gmail_quote">On Nov 8, 2007 8:55 PM, Juergen Marester <<a href="mailto:marester.juergen@gmail.com" target="_blank">
marester.juergen@gmail.com
</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div>wow ! 0day !</div>
<div>damn, 0day, XSS ...<br><br> </div><div><div></div><div>
<div><span class="gmail_quote">On 11/8/07, <b class="gmail_sendername">silky</b> <<a href="mailto:michaelslists@gmail.com" target="_blank">michaelslists@gmail.com</a>> wrote:</span>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0px 0px 0px 0.8ex; padding-left: 1ex;">worked for me minutes after it was posted. seems fixed now.<br><br>On 11/9/07, crazy frog crazy frog <
<a href="mailto:i.m.crazy.frog@gmail.com" target="_blank">
i.m.crazy.frog@gmail.com</a>> wrote:<br>> i tested xssworm on gmail latest version<br>><br>> On Nov 8, 2007 7:04 AM, Scripter Hack <<a href="mailto:xss2root@gmail.com" target="_blank">xss2root@gmail.com
</a>
> wrote:<br>> > There is a html injection video in <a href="https://www.google.com" target="_blank">https://www.xssworm.com</a>.<br>> > It is very critical,you can get the cookie to login into gmail or other
<br>> > service.
<br>> ><br>> > POC:<br>> > <a href="https://www.google.com/accounts/ServiceLogin?service=mail&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&ltmpl=default&ltmplcache=2&passive=truel#" target="_blank">
https://www.google.com/accounts/ServiceLogin?service=mail&rm=false&continue=http%3A%2F%2Fmail.google.com%2Fmail%2F%3Fui%3Dhtml%26zy%3Dl&ltmpl=default&ltmplcache=2&passive=truel#</a>"><h1><a%20href=//xssworm.com/>xssworm</a></h1>
<br>> ><br>> > More:<a href="http://xss2root.blogspot.com/" target="_blank">http://xss2root.blogspot.com@xssworm.com/</a><br>> > _______________________________________________<br>> > Full-Disclosure - We believe in it.
<br>> > Charter:
<a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html</a><br>> > Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank">
http://secunia.com/</a>
<br>> ><br>><br>><br>><br>> --<br>> why advertise on secgeeks?<br>> <a href="http://secgeeks.com/Advertising_on_Secgeeks.com" target="_blank">http://secgeeks.com@xssworm.com</a><br>>
<a href="http://newskicks.com" target="_blank">
http://newskicks.com</a><br>><br>> _______________________________________________<br>> Full-Disclosure - We believe in xss.<br>> Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">
http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>> Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank">http://xssworm./secunia.com/</a><br>><br>_______________________________________________
<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia -
<a href="http://secunia.com/" target="_blank">
http://secunia.com/</a><br></blockquote></div><br></div></div>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">
http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank">http://secunia.com/</a><br></blockquote></div><br><br clear="all"><br>-- <br></div></div><font color="#888888">pdp (acronym) | petrol v. petco
<br><a href="http://www.gnucitizen.org" target="_blank">
http://www.xssworm.com</a></font><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank">http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank">http://secunia.com/</a><br></blockquote></div>