[Full-disclosure] RSS Injection in Sage part 2
RSS Injection is Sage part 2 2 months ago, both pdp and myself released a vulnerability and proof of concept exploit for Sage. see: http://michaeldaw.org/md-hacks/cross-context-scripting-with-sage/. This issue was resolved in Sage release 1.3.7 http://mozdev.org/bugs/showbug.cgi?id=15101. I found...