| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 12 Aug 2008 13:41:28 -0500
From: "Robert Holgstad" <rholgstad@...il.com>
To: "Berend-Jan Wever" <berendjanwever@...il.com>,
full-disclosure@...ts.grok.org.uk
Subject: Re: StumbleUpon XSS (fixed)
hi berend,
we don't care
cheers,
full disclosure
On Tue, Aug 12, 2008 at 7:03 AM, Berend-Jan Wever
<berendjanwever@...il.com>wrote:
> Hi all,
>
> I found an XSS issue in StumbleUpon, which has been fixed. If you're
> interested in what the problem was, look here: http://skypher.com/
>
> What I found most interesting about this case is that there were only 40
> minutes between the acknowledgement of receipt of my email about the issue
> and their fix being online. In my experience that is really, really fast!
>
> Cheers,
>
> SkyLined
>
>
> --------------------------------------------------------------------------------------------------------
> Berend-Jan Wever <berendjanwever@...il.com> http://skypher.com
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists