lists.openwall.net   lists  /  announce  john-users  owl-users  popa3d-users  /  xvendor  oss-security  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4 
Open Source and information security mailing list archives
 
This website is powered by Openwall GNU/*/Linux security-enhanced OS
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Wed, 2 Aug 2006 22:51:11 +0300
From: "Valery Marchuk" <tecklord@...ocom.cv.ua>
To: <bugtraq@...urityfocus.com>,
	<full-disclosure@...ts.grok.org.uk>
Subject: XSS at Netcraft.com

Hi All!

This time XSS vulnerability at Netcraft. Hope this company will act a bit 
sooner than others.



Example of vulnerability is as usually in my blog at 
http://www.securitylab.ru/blog/tecklord/?category=19



All the XSS vulnerabilities, published there since Monday this week are 
still not fixed. So, there are in the list of companies, who do not care 
much about their own security and security of their customers:



PayPall

Netscape

Digg

Google

Netcraft





I wish all these companies luck in fixing vulnerabilities at their web 
sites.



Have a nice day

Valery







_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux