Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
New Facebook XSS Vulnerability
Posted by: Silentz
Date: November 01, 2007 12:00PM

Have a glance over the (very) brief write up:

http://silentzzz.blogspot.com/2007/11/facebook-xss-vulnerability.html

Enjoy...

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: nav
Date: November 01, 2007 10:55PM

Think its fixed already..

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: br0ken
Date: November 01, 2007 11:28PM

Its still alive

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: sjraptor
Date: November 03, 2007 07:52AM

nice.. still there

<script>alert('XSS')</script>" /&gt;

-Marcin
http://tssci-security.com

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: Silentz
Date: November 03, 2007 07:54AM

Time to go cookie harvesting...?

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: hackathology
Date: November 04, 2007 09:20AM

resolved

http://hackathology.blogspot.com

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: Silentz
Date: November 04, 2007 12:27PM

Nope, it's still live.

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: al_pha
Date: November 05, 2007 11:06AM

looks like its fixed to me now.

Options: ReplyQuote
Re: New Facebook XSS Vulnerability
Posted by: Silentz
Date: November 05, 2007 01:06PM

Confirmed, they must've done it today.

Options: ReplyQuote


Sorry, only registered users may post in this forum.