Volutions - ID | News | Gadget | Tutorial | Freeware | Template | Etc.: New XSS on Barack Obama website

New XSS on Barack Obama website







Proof of concept:

http://my.barackobama.com/page/content/change_email?cons_id=1007850763&email1=XSS

http://my.barackobama.com/page/content/change_email?cons_id=1007850763&email1=Redirect

http://speakout.barackobama.com/p/dia/action/public/?action_KEY=155&Source=20101209_ms_dadt_da&Zip=XSS

See also my old post: Obama website XSS Defacement

Enter your email address:

Related Post



  • Digg
  • del.icio.us
  • Facebook
  • Google
  • StumbleUpon
  • Technorati
  • TwitThis
Labels: ,

No response to “New XSS on Barack Obama website”

Leave a reply

 
 Support By Blogger