Lucene search
ratescene.txt
Ratescene.co.uk XSS vulnerability in profile input boxes with cookie disclosure. Affected edit profile input boxes. Screenshots available.
Show more
`Ratescene.co.uk
Homepage:
http://www.ratescene.co.uk
Affected files:
input boxes of editing your profile
------------------------------------------------
Profile input boxes XSS vuln with cookie disclosure:
Data isn't sanatized, try entering the code below:
<img src=javascript:alert(document.cookie)>
Screenshots:
http://www.youfucktard.com/xsp/ratescene1.jpg
http://www.youfucktard.com/xsp/ratescene2.jpg
--------------------------------------------------
And uh..it seems I can't test this site anymore. Right as i'm testing Isee errors start appearing and then I see this:
http://youfucktard.com/xsp/ratescene3.jpg
When going back to that other site; ratemylook.co.uk site, i notice I have a e-mail in the site inbox:
http://www.youfucktard.com/xsp/ratemyscene4.jpg
LoL!
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo21 Jun 2006 00:00Current
7.4High risk
Vulners AI Score7.4