lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <00d801c6b66d$01e96000$0400a8c0@pc4>
Date: Wed, 2 Aug 2006 22:51:11 +0300
From: "Valery Marchuk" <tecklord@...ocom.cv.ua>
To: <bugtraq@...urityfocus.com>,
	<full-disclosure@...ts.grok.org.uk>
Cc: 
Subject: XSS at Netcraft.com

Hi All!

This time XSS vulnerability at Netcraft. Hope this company will act a bit 
sooner than others.



Example of vulnerability is as usually in my blog at 
http://www.securitylab.ru/blog/tecklord/?category=19



All the XSS vulnerabilities, published there since Monday this week are 
still not fixed. So, there are in the list of companies, who do not care 
much about their own security and security of their customers:



PayPall

Netscape

Digg

Google

Netcraft





I wish all these companies luck in fixing vulnerabilities at their web 
sites.



Have a nice day

Valery







_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ