Paid Advertising

SLA.CKERS.ORG
HA.CKERS SLACKING sla.ckers.org web application security lab forums
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Goto Thread: PreviousNext
Goto: Forum ListMessage ListNew TopicSearchLog In
Paypal.com XSS - REDIRECT-Iframe injection
Posted by: Fugitif (IP Logged)
Date: May 12, 2009 09:36AM

source:

[nemesis.te-home.net]

http://img9.imageshack.us/img9/3801/89855532.jpg

Options: Reply To This MessageQuote This Message
Re: Paypal.com XSS - REDIRECT-Iframe injection
Posted by: Fugitif (IP Logged)
Date: May 18, 2009 05:01PM

another xss on paypal and also on ebay

[nemesis.te-home.net]

Options: Reply To This MessageQuote This Message
Re: Paypal.com XSS - REDIRECT-Iframe injection
Posted by: ma1 (IP Logged)
Date: May 18, 2009 06:14PM

The "cool" thing is that, since this is a DOM XSS (type 0), it is completely ignored by IE 8's XSS protection ;)

--
*hackademix.net*

There's a browser safer than Firefox... Firefox, with NoScript



Edited 1 time(s). Last edit at 05/18/2009 07:02PM by ma1.

Options: Reply To This MessageQuote This Message


Goto: Forum ListMessage ListSearchLog In
Sorry, only registered users may post in this forum.
SecTheory Internet Security

sla.ckers.org RSS feed
Board haX0r3d together by ha.ckers.org, forshizzle.
SecTheory Security Consulting *