[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Allegro.pl XSS [0-day]
- To: Maksymilian Arciemowicz <max@xxxxxxxxxx>
- Subject: Re: [Full-disclosure] Allegro.pl XSS [0-day]
- From: Michal Zalewski <lcamtuf@xxxxxxxxxxx>
- Date: Sun, 14 Apr 2013 09:58:44 -0700
> CVSS2 define a standard XSS ~4.3/10, more critical are CSRF ~6.8 or Open
Redirect ~5.8
<head explodes>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/