Comments on: XSS-Proxy – Cross Site Scripting Attack Tool http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/ Ethical Hacking, Penetration Testing & Computer Security Sat, 21 Nov 2009 06:04:59 +0000 http://wordpress.org/?v=2.8.6 hourly 1 By: abcd http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/#comment-127767 abcd Mon, 16 Feb 2009 09:49:32 +0000 http://www.darknet.org.uk/?p=1131#comment-127767 alert('html'); alert(’html’);

]]> By: Cor-Paul http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/#comment-125030 Cor-Paul Wed, 29 Oct 2008 15:34:15 +0000 http://www.darknet.org.uk/?p=1131#comment-125030 @Pantagruel: their problem to solve.. yours to exploit? ;) @Pantagruel: their problem to solve.. yours to exploit? ;)

]]> By: navin http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/#comment-125017 navin Mon, 27 Oct 2008 11:27:23 +0000 http://www.darknet.org.uk/?p=1131#comment-125017 milw0rm has numerous XSS exploits fr mysql databases!! milw0rm has numerous XSS exploits fr mysql databases!!

]]> By: goodpeople http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/#comment-125016 goodpeople Mon, 27 Oct 2008 09:25:36 +0000 http://www.darknet.org.uk/?p=1131#comment-125016 XSS is a relatively new an unknown method to the public. I fear that we'll see alot of XSS attacks in the future. Security just recently became an issue for developers of web applications. Commonly heard misconception: I'm using mysql, so i'm not vulnerable to XSS.. XSS is a relatively new an unknown method to the public. I fear that we’ll see alot of XSS attacks in the future. Security just recently became an issue for developers of web applications.

Commonly heard misconception: I’m using mysql, so i’m not vulnerable to XSS..

]]> By: Pantagruel http://www.darknet.org.uk/2008/10/xss-proxy-cross-site-scripting-attack-tool/#comment-125008 Pantagruel Sat, 25 Oct 2008 09:58:39 +0000 http://www.darknet.org.uk/?p=1131#comment-125008 Thanks for the info. We had an intro of a new online ordering system some days ago. It relied heavily on the internal database of goods. But for well known suppliers their was an option to 'patch-through' into their website, process an order and retrieve the necesarry info into the mother application. I asked them about a possible xss vuln, but the tech didn't know wha it was and started blabbing about vpn connection between machine's etc. After reading through this I am itching, but since they will be my ex-employer within 2 months (got laid off but have found a new job quite quickly) it will be their problem to solve. Thanks for the info.

We had an intro of a new online ordering system some days ago. It relied heavily on the internal database of goods. But for well known suppliers their was an option to ‘patch-through’ into their website, process an order and retrieve the necesarry info into the mother application. I asked them about a possible xss vuln, but the tech didn’t know wha it was and started blabbing about vpn connection between machine’s etc.
After reading through this I am itching, but since they will be my ex-employer within 2 months (got laid off but have found a new job quite quickly) it will be their problem to solve.

]]>