Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Current Page: 1 of 1
Results 1 - 2 of 2
7 years ago
sn
@Fish Actually i was trying upload my pic on my blog so thought to play with it. thats the HTML code blogspot generate automatically. so i put my code in onblur="javascript:alert(document.cookie)" to get cookie info. It gives me cookies back too. I'm looking for some good insight to extend it. Sn
Forum: CSRF and Session Info
7 years ago
sn
Hi fellas, I have been researching various vulnerability on blogspot.com (an google entity) from couple of days and found something interesting in Google blogspot through which cookie stealing is possible. here is my code correct me if i'm wrong. code is working on my blogspot account for testing. <a onblur="javascript:alert(document.cookie)" href="http://bp3.blogger.c
Forum: CSRF and Session Info
Current Page: 1 of 1