[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] A large list of sites vulnerable to cross site scripting bugs.

To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] A large list of sites vulnerable to cross site scripting bugs.
From: "Info" <info@xxxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 13 May 2005 05:00:53 -0400

Here are some of the companies/agencies in our new list of sites affected by 
cross site scripting bugs. 

Federal Reserve Bank of New York, CompUSA, SBC, EPA, ABC News, BlockBuster, 
BizRate, CNET, Geico Insurance, Oracle, Cingular, Kmart, nVidia, Chaintech, 
TigerDirect, US Dept. of Treasury

Our list of companies/agencies with XSS bugs is located at 
http://pointblanksecurity.com/xss/xss2.php with more details. 
Clicking on the company/agency links will demonstrate the XSS bug.


Our older cross site scripting black list from March 2002 is located here 
http://pointblanksecurity.com/xss/.


Enjoy,
People @ pointblanksecurity

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [FLSA-2005:155508] Updated cvs package fixes security issues
Next by Date: [Full-disclosure] MS launch subscription-based security service
Previous by thread: [Full-disclosure] [FLSA-2005:155508] Updated cvs package fixes security issues
Next by thread: [Full-disclosure] MS launch subscription-based security service
Index(es):
- Date
- Thread