Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
MS06-044 XSS exploits in the wild
Dec 22 2006 05:26PM
Moyer, Shawn - St. Louis, MO (shawn moyer stl usda gov)
We have seen a number of XSS exploit attempts with MS06-044 payloads in
the past few days. Several are using the site below to load payloads.
The attackers appear to be compromising small ecommerce sites via SQL
injection vulns and then loading the XSS from there.
The code is hosted on the site bel...
[ more ]
Copyright 2010, SecurityFocus