[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google

To: Michal Zalewski <lcamtuf@xxxxxxxxxxx>
Subject: Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
From: Guifre <guifre.ruiz@xxxxxxxxx>
Date: Mon, 28 Jan 2013 11:51:44 +0100

Hello,

Agree with Michal. It is very interesting to get to know know new
complex xss vulnerabilities.

IMAHO, the issue here is claiming to have found a vulnerability
without providing a PoC of how to use it to violate a security policy
of the targeted service, probably because there are none, and
therefore it's not a vulnerability but a feature.

Regards,
Guifre.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: ANTRAX
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: Jakub Zoczek
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: ANTRAX
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: Gynvael Coldwind
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: ANTRAX
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: Elfius
- Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
  - From: Michal Zalewski

Prev by Date: [Full-disclosure] nCircle PureCloud Vulnerability Scanner - Multiple Vulnerabilities
Next by Date: [Full-disclosure] What Intruder Detection System (IDS) or Network Security Monitor (NSM) do you use?
Previous by thread: Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
Next by thread: Re: [Full-disclosure] [0 Day] XSS Persistent in Blogspot of Google
Index(es):
- Date
- Thread