lists.openwall.net   lists  /  announce  john-users  owl-users  popa3d-users  /  xvendor  oss-security  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4 
Open Source and information security mailing list archives
 
This website is powered by Openwall GNU/*/Linux security-enhanced OS
[<prev] [next>] [<thread-prev] [month] [year] [list] 
From: jorge at pistone.com.ar (Pistone)
Subject: INTERNIC WHOIS untrusted link XSS

Aha,

Jul 23 2002 5:19AM
http://www.securityfocus.com/archive/82/283724/2002-07-17/2002-07-23/0
20 May 2003 00:29:17
http://lists.netsys.com/pipermail/full-disclosure/2003-May/005092.html


>untrusted link XSS


> untrusted link XSS ...
>
http://www-whois.internic.net/cgi/whois?whois_nic=%3Ca+href%3Dhttp%3A%2F%2Fe
> vilsite.com%3Eclick%20here%20for%20results%3C%2Fa%3E&type=domain
>
> or any xss you wish to embed is also OK
> morning_wood ( XSS king )   <--  (XSS CopyKing)

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux