[Owasp-delhi] Rediff Vulnerability

SISA Abhay Bhargav ab at sisa.co.in
Wed May 27 10:27:51 EDT 2009


Hi All

 

I am pleased to see that the Rediff Search XSS issue has been fixed.
Although I reported the issue to Rediff, I would like to thank some members
of OWASP Delhi for having taken the matter to a higher plane and reporting
it to someone who has been proactive. 

 

Unfortunately, several other Rediff sites are as vulnerable to XSS as ever.
I will probably go ahead and report this issue as well. Hopefully it gets
sorted out as quickly as the previous one. 

 

Check it out: http://citadelnotes.blogspot.com

 

Regards

Abhay Bhargav

CISSP, CPA, CISA, PCI QSA, OCTAVE Implementer

 <http://www.sisa.co.in/> cid:image002.jpg at 01C97D81.CC02AB70

SISA Information Security (P) Ltd| Ph 91 80 41153769| Fx 91 80 41153796

 

 

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-delhi/attachments/20090527/b4ed5608/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 1875 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-delhi/attachments/20090527/b4ed5608/attachment-0001.jpe 


More information about the Owasp-delhi mailing list