Menu
▾
▴
Re: [PHPiCalendar-DEV] Fwd: PHP iCalendar Cross Site Scripting
|
From: Jim Hu <ji...@ta...> - 2006-06-28 22:41:33
|
Proof of concept is a broken link. Do you know more about this? ===================================== Jim Hu Associate Professor and Associate Head for Graduate Programs Dept. of Biochemistry and Biophysics 2128 TAMU Texas A&M Univ. College Station, TX 77843-2128 979-862-4054 On Jun 28, 2006, at 4:49 PM, Nicolas Contamin wrote: > It seems that something goes wrong in the RSS feed. > > I've not yet followed the links mentionned, but this advisory had > been published on the bugtraq list, so it should have been validated. > > > Danon'. > ---------- Forwarded message ---------- > From: bo...@li... <bo...@li...> > Date: 28 Jun 2006 18:14:42 -0000 > Subject: PHP iCalendar Cross Site Scripting > To: bu...@se... > > >> K.S Advisory > > >> irc.gigachat.net #kurdhack > > >> Thanx : > Netqurd,Azad,B3g0k,Fearless,Milex,Flot,Zay_Boy,PH,KHA,KCA and other > my friends > > >> Version : All Version > > > Proof Of Concept : > > http://www.site.com/phpicalendar/rss/index.php?cal=[XSS] > > Original Advisory : > > http://kurdishsecurity.blogspot.com/2006/06/kurdish-security-12-php- > icalendar.html > > EoF > > > -- > I'm a poor and lonesome Yaourt... (Air connu) > Using Tomcat but need to do more? Need to support web services, > security? > Get stuff done quickly with pre-integrated technology to make your > job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache > Geronimo > http://sel.as-us.falkag.net/sel? > cmd=lnk&kid=120709&bid=263057&dat=121642______________________________ > _________________ > Phpicalendar-devel mailing list > Php...@li... > https://lists.sourceforge.net/lists/listinfo/phpicalendar-devel |
