Darwis untuk Indonesia

"Raihlah ilmu, dan untuk meraih ilmu belajarlah untuk tenang dan sabar." (Ummar bin Khattab, R.A)

XSS Bug on WALHI Site

Posted by Darwis Suryantoro on June 17, 2007

By KB_007.NNR a.k.a Darwis Suryantoro

=============================

There is a vulner on walhi site :
http://www.walhi.or.id/

I’ve told the admin of that site, but there was not respond mail to me. So, this time, I’ll tell you my action.

you can input this :
<iframe
src=http://friendster.ac.id height=1000 width=1000></iframe>
Put in search textfield (above, right of the site).

AS EXAMPLE into textfield on
the search menu.

What is XSS, (I’m so lazy to expalin it in this moment. There’re many articles describe about that). please visit

http://ezine.echo.or.id/ezine8/ez-r08-mrt-eksploitasi_web_dg_XSS.txt
for more
information.

===================================================
I’m just a newbie, may be you say “you are dump”, its okkay, I like it. I just wanna share my short knowledge about ICT.
==================================================

ARE THERE
ANY BUGS AGAIN?????
Please leave a comment here…

=============================================

Ke halaman indeks Computer Networking 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: