Re: [Full-disclosure] WTF

ieve in it. Charter: > http://lists.grok.org.uk/full-disclosure-charter.html Hosted and > sponsored by Secunia - http://secunia.com/ About dns ;; ADDITIONAL SECTION: ns01.highspeedbackbone.net. 240003 INA199.181.77.21 ns02.highspeedbackbone.net. 240003 INA199.181.78.22 ns03.high

[Full-disclosure] Multiple XSS+XSRF found at Movistar Chile

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Status: reported Discovered: April 25, 2011, 9:32 p.m. XSS: http://www.movistar.cl/PortalMovistarWeb/appmanager/Porta%3Cscript%3Ealert(/xss/)%3C/script%3EalMovistar/portal?_nfpb=true&_pageLabel

Re: [Full-disclosure] XSS on NIC Chile

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/20/2011 12:36 PM, Zerial. wrote: > * Main URI: http://www.nic.cl > > * Type: Cross Site Scripting > > * Exploitable URI: > http://www.nic.cl/cgi-bin/show-form?f=/example/201001191941%3Cbody%20onload=alert%28this%29%3E3a6 > > > * Status: *Reporte