lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 21 Dec 2009 11:18:59 +0100
From: hackyouridols@...glemail.com
To: full-disclosure@...ts.grok.org.uk
Subject: Extremely important posting on my blog on the
	latest in XSS!!!11

Hello participants of Full-Distortion.

I know you have nothing better to do than to read my emails, so let me
tell you about these extremely important postings on my blog on the
latest and greatest XSS vulnerabilities there are!!!

I have found 3 (in words: three) web sites which are vulnerable to this
extremely rare but overly critical XSS exploit which you can see here:

XSS:

smtp://localhost/?HELO=<iframe
src="http://iamanidiot.websecurity.com.ua.hk.cz/>

I just wanted to let you know. You better fix that if you have it, too.
It is extremely critical. Of and did I advertise my blog yet? The
website is http://iamanidiot.websecurity.com.ua.hk.cz/!!! Come and bring
traffic to my website, you know I MustHavePublicity!


Best wishes & regards,
MustPromoteMyWebsite
Administrator of the only Websecurity web site ever
http://websecurity.com.ua.hk.cz

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists