lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 29 Mar 2007 16:46:40 +0200
From: Edmond Dantes <jk3380@...da.org>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Another XSS vulnerability in
	Italian	providerLibero.it

paura@...istici.org wrote:
>>They probably need to redo their entire site's scripts, I wouldn't doubt 
>>there's a few more exploits in there somewhere. -- 2+ exploits within one 
> 
> site in one month is pretty sad.
> 
> Hemmm...
> The same guys relased another 4 just a few minutes ago.
> 
> The idiot part is that Libero strongly refuse to contact the guys even if they continue to say that they have other XSSs and want to contact the admins...
> They told libero : 'we have other vulns, will you tell us who can cope with them' but received no answers... :)
> 
> Sort of sad...

Maybe not... at least for me ;-))
Expose more. My ex girl friend met her new guy there. Maybe I can pull some 
tricks ;-)

/CapitanMutanda

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists