lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060515115933.30251.qmail@securityfocus.com> Date: 15 May 2006 11:59:33 -0000 From: rootter@...kmaster.us To: bugtraq@...urityfocus.com Subject: Gawab.com Register Xss Bugtraq Script: Gawab.com Mail Services Portal System Version: ? Language: PHP Problem: Xss Vendor: http://www.HackMaster.Us Discovered by: rootter(at)hackmaster(dot)us Example: http://gawab.com/webfront/register.php?formAction=start&newDomain=i%20found%20a%20xss%20vuln.%20%20%3Cscript%3Ealert(%22Security%20testing%20by%20R00TT3R%20:)%22);%3C/script%3E