Proof of concept is a broken link. Do you know more about this?
=====================================
Jim Hu
Associate Professor and Associate Head for Graduate Programs
Dept. of Biochemistry and Biophysics
2128 TAMU
Texas A&M Univ.
College Station, TX 77843-2128
979-862-4054
On Jun 28, 2006, at 4:49 PM, Nicolas Contamin wrote:
> It seems that something goes wrong in the RSS feed.
>
> I've not yet followed the links mentionned, but this advisory had
> been published on the bugtraq list, so it should have been validated.
>
>
> Danon'.
> ---------- Forwarded message ----------
> From: bo...@li... <bo...@li...>
> Date: 28 Jun 2006 18:14:42 -0000
> Subject: PHP iCalendar Cross Site Scripting
> To: bu...@se...
>
> >> K.S Advisory
>
> >> irc.gigachat.net #kurdhack
>
> >> Thanx :
> Netqurd,Azad,B3g0k,Fearless,Milex,Flot,Zay_Boy,PH,KHA,KCA and other
> my friends
>
> >> Version : All Version
>
>
> Proof Of Concept :
>
> http://www.site.com/phpicalendar/rss/index.php?cal=[XSS]
>
> Original Advisory :
>
> http://kurdishsecurity.blogspot.com/2006/06/kurdish-security-12-php-
> icalendar.html
>
> EoF
>
>
> --
> I'm a poor and lonesome Yaourt... (Air connu)
> Using Tomcat but need to do more? Need to support web services,
> security?
> Get stuff done quickly with pre-integrated technology to make your
> job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache
> Geronimo
> http://sel.as-us.falkag.net/sel?
> cmd=lnk&kid=120709&bid=263057&dat=121642______________________________
> _________________
> Phpicalendar-devel mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpicalendar-devel
|
