On 5/1/05, James Tucker <[EMAIL PROTECTED]> wrote: > Er, Bank, McD's. The monetary values are not entirely dissimilar. > > XSS is XSS anyway, does it really matter where? Black hats are known > for their exploitation of "underestimated" weaknesses, so if one were > feeling philosophical, it could be expressed that this problem may be > more important than the 'bigger' issues.
You can't pick a better day than May the 1st to disclose a XSS vulnerability on a Mc Donands website than on May the 1st, and thats the point in this whole little affair. Thanks, n3td3v This is where I read Full-Disclosure: http://groups-beta.google.com/group/n3td3v _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/