[<prev] [next>] [day] [month] [year] [list]
Message-ID: <E1BIoPp-000MnF-00.offtopic-mail-ru@f15.mail.ru>
From: offtopic at mail.ru ("offtopic" )
Subject: XSS in cookie
Hi List.
I found XSS in cookie on an Web-application.
So, if i use special-crafted cookie, I can run XSS attak against the site users.
To accomplish attack I must modify cookie on client computer, which I can do by XSS :-)
Is it vulnerability and if it is, how to use this attack?
Thank you, and sorry for my English,
(c)oded by offtopic@...l.ru
Powered by blists - more mailing lists