Darwis untuk Indonesia

"Raihlah ilmu, dan untuk meraih ilmu belajarlah untuk tenang dan sabar." (Ummar bin Khattab, R.A)

XSS Bug on WALHI Site

Posted by Darwis Suryantoro on June 17, 2007

By KB_007.NNR a.k.a Darwis Suryantoro


There is a vulner on walhi site :

I’ve told the admin of that site, but there was not respond mail to me. So, this time, I’ll tell you my action.

you can input this :
src=http://friendster.ac.id height=1000 width=1000></iframe>
Put in search textfield (above, right of the site).

AS EXAMPLE into textfield on
the search menu.

What is XSS, (I’m so lazy to expalin it in this moment. There’re many articles describe about that). please visit

for more

I’m just a newbie, may be you say “you are dump”, its okkay, I like it. I just wanna share my short knowledge about ICT.

Please leave a comment here…


Ke halaman indeks Computer Networking 


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

%d bloggers like this: