# Website: http://www.nasa.gov
# Open source & NASA
# Bug: XSS
# Date: 10.02.09
#############################

Vulnerable URL: hxxp://opensource.gsfc.nasa.gov/feedback.php
Post based XSS: any field
Click here for POST request
Fix input validation in all the fields...
Cheers,
Kish
No comments:
Post a Comment