Full Disclosure mailing list archives
html in simpbook
From: zeus olimpusklan <zeus.olimpusklan () gmail com>
Date: Fri, 23 Dec 2005 10:29:10 -0600
########################################################################### # Advisory #1 Title: HTML Injection Vulnerability in Simpbook( all vercion) # # # Author: 0o_zeus_o0 # Contact: zeus () diosdelared com # Website: olimpusklan.org # Date: 23/12/2005 # Risk: High # Vendor Url: http://www.codegrrl.com # Affected Software: Simpbook # Non Affected: # # We Are:olimpus klan team # #================================================================ #TECHNICAL INFO: # #when being in the guest book HTML in the area of messages can be injected #with the next script # #Example: # #<h1>hi # #<script>alert('you hacked')</script> # #or some inframe # # # # #================================================================ # #VULNERABLE VERSIONS: all # #================================================================ Contact information #0o_zeus_o0 #zeus () diosdelared com #www.olimpusklan.org #================================================================ #greetz: lady fire, fraude, adi, xoxo , pandora, mbyte ##############################################################################
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- html in simpbook zeus olimpusklan (Dec 23)