|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: [Full-disclosure] Arin.net XSS
From: php0t (very
unprivate.com)
Date: Fri Mar 03 2006 - 15:29:10 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Yes, because firefox probably doesn't execute javascript if the
location is in an IMG tag.
I don't know why they posted that in the first place.
Here's a link that will probably work under both browsers
http://ws.arin.net/whois/?queryinput=%3Cscript%3Ealert('666')%3C/script%
3E
> Right,
> Did this ever work? This fails for me man. How did you verify it?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]